Extracted

• • Target

    636f62090d65675be20e6ea64127d760c390f043bae8bf777221982c4a54056aN

  • Size

    59KB

  • MD5

    efd495722840bb313ca2fa9db1b724e0

  • SHA1

    ed6649f06f7a8553f03dc6648ec8a0be1bc2e5b3

  • SHA256

    636f62090d65675be20e6ea64127d760c390f043bae8bf777221982c4a54056a

  • SHA512

    c3a416d202b44899e10b412c131f85f01be667cb10986d072e0be5aa5fdc9d1250bf07b00886d6f8b3f088cb77515abe39492f107dbec9e7e474d33550ce3665

  • SSDEEP

    1536:6W82C0Db1edMckBI1kmJAhTPY6pnouy8d:6n25DbaMySmJAhbvoutd

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2