Extracted

• • Target

    07350ba53c25332190c886ef95a792480a42b7aaf4a5b5c9aff518a83319707c_NeikiAnalytics.exe

  • Size

    6.5MB

  • MD5

    5a60905174d86a6eae59db289c3646c0

  • SHA1

    df4b242a156f535b34a10b96f604087756cc4791

  • SHA256

    07350ba53c25332190c886ef95a792480a42b7aaf4a5b5c9aff518a83319707c

  • SHA512

    d87cfacf0e8e6bcd431bee594a48a26c9f369347dfd46440d8dee00619d643c6d24f963ed0047fcbe89ccb2eaae73c540f60353c289390aa4c115d5b6f70a522

  • SSDEEP

    98304:Roc5swrA2XGxlHKcjTjNk3o659yrnfKtDrKIAyyks+Ctf8mQZVSk:i0LrA2kHKQHNk3og9unipQyOaOk

  Score

  10^/10

  urelastrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2