Extracted

• • Target

    98c94b8ee59f3863e0b9e05654087ed00d0a33628c43e8f044f4fe470eefa2d7

  • Size

    94KB

  • MD5

    b1810d0dc566078ef5b62f239603f765

  • SHA1

    a7b79fac61d17c5217f514dd9718ebd5aed9bbec

  • SHA256

    98c94b8ee59f3863e0b9e05654087ed00d0a33628c43e8f044f4fe470eefa2d7

  • SHA512

    8d5a298ec6a550547bd03a36a6c30fef7f34d3ec1d9e9cdb659f839153b9d847b3907dfe86e2e199e22d96a69d572b7f9a586fd5b9481deb88aed2106848be8b

  • SSDEEP

    1536:OVNSf7hyk+I6412V6PMqAax80XAFSrRNZa:SSf9yk+U2V63XAFSrRa

  Score

  10^/10

  urelastrojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Detects executables built or packed with MPress PE compressor

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2