Extracted

• • Target

    1954b0fb6a8388cc2fe8d8eadab303d0N.exe

  • Size

    79KB

  • MD5

    1954b0fb6a8388cc2fe8d8eadab303d0

  • SHA1

    bac3d773a7a2284fa43bb7910eb8655d78534131

  • SHA256

    70e6e6f84b71fec7635872cbd68134670a6ecae3a0b2a281aeeb7e152491df66

  • SHA512

    102b7dfb080df68bc7c52f3bab1ec5c3210008c4bf3945c347de672d76c1e11d9a8a931876f05443e16bcf8c877c50d260fb2e8da8cd793b3d35c44add94e286

  • SSDEEP

    1536:9HxkDvWdB7O9dKymMyCMGni2Lz1LaRQLDE+:9RkjWjK9ABpGzlaRQLR

  Score

  10^/10

  urelastrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2