Extracted

• • Target

    8e66c45d23b4ae3710cd30f060d9fb4c_JaffaCakes118

  • Size

    410KB

  • MD5

    8e66c45d23b4ae3710cd30f060d9fb4c

  • SHA1

    654c47ca6f9b14e7b1383eb1985775c6f3b5469c

  • SHA256

    da65e155981aff720e00d628b505be9b566236cb1aa236f989a121dfddaa8922

  • SHA512

    050494fb3d0c6edf72b5f2f7144fb8349186b55c31e8135a2cb758cd155e8371e9381a945c9987e60d45fa17136fd8c802264bec1d8430019a2c20cf41d9ee6f

  • SSDEEP

    6144:kzU7blKaP2iCWhWapKRaRXOkN4Swel6f3IsInOts4:eU7M5ijWh0XOW4sEfeOD

  Score

  10^/10

  urelasaspackv2discoverytrojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2