Extracted

• • Target

    213dae0604db18134833b5a9f34ba8fca11e5ec76c3ecd05a27eba188a7e249e

  • Size

    629KB

  • MD5

    852c786fe915770ff65d506086e4bf35

  • SHA1

    c47e365f60694b91426dd12d50df82cf96afd732

  • SHA256

    213dae0604db18134833b5a9f34ba8fca11e5ec76c3ecd05a27eba188a7e249e

  • SHA512

    469b5daf40b28366b11268f7ab96f7a1379f9e34ab150db4902301ad4779d890d09933527e45b6c88888979ef53c99d96178d2abe99a2824633a4d6e1ac9ca33

  • SSDEEP

    12288:5U7M5ijWh0XOW4sEf9OTijWh0XOW4sEfsx:5UowYcOW4a2YcOW4Q

  Score

  10^/10

  urelasaspackv2discoverytrojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2