Extracted

• • Target

    50e82ae75b8c154919cdfff8b4ad2821_JaffaCakes118

  • Size

    463KB

  • MD5

    50e82ae75b8c154919cdfff8b4ad2821

  • SHA1

    6073d47268f61be318eeb742d15a865a7e8c99b0

  • SHA256

    cdadde22892a03fb2a33e5a426ebde9dac040020f285ec88e6d8bf19fe4ea348

  • SHA512

    03da6cf8f839f0850ab0d97a7e3e671a39dd9fb21483240805aaabbc51cabaea75fee3478e198724aee34452ff4a4c3d501397541a05668e20f3d2d8e5101c25

  • SSDEEP

    12288:Y6twjLHj/8/GcHUIdPPzEmvTnabAh0ZnAr1UU:Y6tQCG0UUPzEkTn4AC1+T

  Score

  10^/10

  urelastrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2