Extracted

• • Target

    822db89c7caafdeab59a80d8afedb6a0_JaffaCakes118

  • Size

    557KB

  • MD5

    822db89c7caafdeab59a80d8afedb6a0

  • SHA1

    b345cf37f3a318649a2c9852ebc813e7b1e69271

  • SHA256

    206a904b547eec8a102559b437b3359c77e5c8a9f3eb22abb062dba272f58cd3

  • SHA512

    cebad1b358a7c4d7f39534c1e1807b27ce9aea546424ddd1d0389ea6254cecdd4d698fd945cb9cb7e5cf08e9c4853b356af78972b633ff28af69b1e771b1a500

  • SSDEEP

    12288:zccNvdRExZGe+Q1nSoS++43x+l7QLiaEyb:znPfQp9L3olqFb

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2