urelas | fbe307a106c97ae35b71b730186ee5a8a090200a910e69befa590573e9813c30 | Triage

Sharing

General

Target

fbe307a106c97ae35b71b730186ee5a8a090200a910e69befa590573e9813c30
Size

115KB
MD5

24fffed4ee441260cd49ba496845b3e9
SHA1

35bfeebb75e2b319bfc2d31648ec0524f657953b
SHA256

fbe307a106c97ae35b71b730186ee5a8a090200a910e69befa590573e9813c30
SHA512

582808a87b3b8d2470a571420b01e96fe48cbaef2b9f62f7e6cf59805ea4222c14cefc6779fd4cf01a97ca6b374fbd7f84ab4b24d43c977e4b914a6d11a15f1a
SSDEEP

1536:It/oSlEjl40ed9Yh848kz/mLKxwrCofcC5usWjcdl6aKtCsx:Itgqvi9nMKxQbJ5xl6aKtCsx

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbe307a106c97ae35b71b730186ee5a8a090200a910e69befa590573e9813c30

Files

fbe307a106c97ae35b71b730186ee5a8a090200a910e69befa590573e9813c30
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ