Extracted

• • Target

    47dd3cde558cde1d732aa1295545d8bc7798d548abac0b35b68e556a66340046

  • Size

    80KB

  • MD5

    6b72e6ae3bdbfd5d9c65092e585f03bd

  • SHA1

    143b03d2613be5fd6012d4f5549f8230f8df5a81

  • SHA256

    47dd3cde558cde1d732aa1295545d8bc7798d548abac0b35b68e556a66340046

  • SHA512

    3a5ee17d46f8766bc937fae2d9b631afcace3ace5f45c545791d62e044ea9c8f4bd5bfa6c14ecaec9a736072a4ec59bf420c47af59763500ce9e01999c9de685

  • SSDEEP

    1536:9HxkDvWdB7O9dKymMyCMGni2Lz1LaRQLDEr+:9RkjWjK9ABpGzlaRQLe+

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2