Extracted

• • Target

    0ac0e324f7dc8b40d7ab08c4422fbbc0_NeikiAnalytics.exe

  • Size

    6.4MB

  • MD5

    0ac0e324f7dc8b40d7ab08c4422fbbc0

  • SHA1

    a6fa3f28e71b4ea8bc24674a59c9c12c830d1579

  • SHA256

    5c9125942c16b025c01335bd846e89ec1c4eb0d99801b1e4ad03f1536ba479eb

  • SHA512

    c68d833ab9f21432c4ce256ba144aacf5bac9be76685504e2d290e128dac1234e3ef77710a078af338c01402a9b2032096c8b93ec89a9a633345ab316c05ac6f

  • SSDEEP

    98304:Roc5swrA2XGxlHKcjTjNk3o659yrnfKtDrKIAyyks+Ctf8mQZVSD:i0LrA2kHKQHNk3og9unipQyOaOD

  Score

  10^/10

  urelastrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2