Extracted

• • Target

    6ed65dc712475b850329b728fda9bda8aa7e386758c39aa4f30ba0f75ef87dd3

  • Size

    6.5MB

  • MD5

    23a7b8747c18737e004b3a41c03a78e2

  • SHA1

    b65ff6e25073f536b28460129732452078a13055

  • SHA256

    6ed65dc712475b850329b728fda9bda8aa7e386758c39aa4f30ba0f75ef87dd3

  • SHA512

    2edeaf270111fe6f8e9ce2ab98e8af810a649b7af7a7e3dd5d469c664338d29a1f9cfec0199ec17416131e68069ff25e5c6fc6dfa94f6dd2bdd6f43b36d502ee

  • SSDEEP

    98304:Roc5swrA2XGxlHKcjTjNk3o659yrnfKtDrKIAyyks+Ctf8mQZVS7:i0LrA2kHKQHNk3og9unipQyOaO7

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2