Extracted

• • Target

    8211f07024419b865bdcde4f10f1abb6_JaffaCakes118

  • Size

    444KB

  • MD5

    8211f07024419b865bdcde4f10f1abb6

  • SHA1

    c8e3b271e113d417d29b2240c9431fa790d3ba1e

  • SHA256

    631bcb9836e5ac4e4b97ac495697ab2db0bacb9aba3e268be31e525328a50cc3

  • SHA512

    1f0ae22f548b4d452453e6a39b83a3779b3c3e698b4a54a267a6052a0244e87f7aa9baa1fc33283c77dac089bce93c15e1b3251c16268810815a195c137c85a9

  • SSDEEP

    12288:W33Xn66ga6ENOy+CDyepaccTCSjfkkItQU8eoPk:8Hn6/8NOy+CDQcciQpeoPk

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2