Extracted

• • Target

    2b0db0ee1403db78285e0b416e206180N.exe

  • Size

    84KB

  • MD5

    2b0db0ee1403db78285e0b416e206180

  • SHA1

    d273854be234736ea6b98eb931b8bcc6bef530cc

  • SHA256

    0ca127d80352bdf1cee9a1d5e1f020e4265fae2a20272b1df5d7458e9a15ceb6

  • SHA512

    a1e7b2d81ce59d1c706c9945d9774ba973da547e5be56834c9a68853b3e0b62f1c1221b48043f5aadb95adce374e4f0a6f54646318c2c39b59827a256e9eb971

  • SSDEEP

    1536:Jz+jIHNv+vsFbwW6dk0QeLb4NMHriBRxiDkURRO:JznH976dUCnuniD1O

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2