urelas | 56a74e83d8e3c75a7bcc8d96a62e8888acc28e70bb83b41e0227a2f03e0e9313N | Triage

Sharing

General

Target

56a74e83d8e3c75a7bcc8d96a62e8888acc28e70bb83b41e0227a2f03e0e9313N
Size

168KB
MD5

c4fd1a2a1454b47763044537512fc850
SHA1

f1b765caafc9383770589afa294ce6001cce30f9
SHA256

56a74e83d8e3c75a7bcc8d96a62e8888acc28e70bb83b41e0227a2f03e0e9313
SHA512

548c90238039fa7c5b59e99310142eb25205cac2ae6ac0084fbb205796ea3f9a6db6d2b97dc0d90b0717b3693d8bc15fdf8c7399016e2794b30a1bbd99a5d09d
SSDEEP

1536:eADA0Wbt1931D2P7BWLQ4zR4LUKMcPHFE3HP/GTW65CGEgvpxyTf/K:eADA0Wc7UJ6LZMaHLW65DE8pxWq

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
56a74e83d8e3c75a7bcc8d96a62e8888acc28e70bb83b41e0227a2f03e0e9313N

Files

56a74e83d8e3c75a7bcc8d96a62e8888acc28e70bb83b41e0227a2f03e0e9313N
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cxbvjsnd
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE