Extracted

• • Target

    d238deae281f52410d2d9d3afff9a640N.exe

  • Size

    4.4MB

  • MD5

    d238deae281f52410d2d9d3afff9a640

  • SHA1

    16c6b365bb5e70bc358a0ae3325183129508c08d

  • SHA256

    aa7c2eb9b169f65bd19c5ab338e6d7d363508693f0799549278102cc5d810f4b

  • SHA512

    6175b79c40e705df5b7942743a64a96d4b24ecc8b914aa6fdfa640e3ee996ea4f8737035b129afd28349b66c1c09e188e790ba2c4b95a130c5f843d63ec28d7c

  • SSDEEP

    24576:cUowYcOW4NcW9tGw2Eu8CkdhpIIZxYETKtZK/nyr5DBpL:GcOukjS8JdIaxpTK0nyNnL

  Score

  10^/10

  urelasaspackv2discoverytrojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2