Extracted

• • Target

    a3385d8728294cd9b1e997b4e01bee6e5040d7ee18f58105903464769ae98e69N

  • Size

    59KB

  • MD5

    22a23401fba5f4ddd9a241671edca140

  • SHA1

    30ca214734fdac60f218b46b95eb5c20289a0465

  • SHA256

    a3385d8728294cd9b1e997b4e01bee6e5040d7ee18f58105903464769ae98e69

  • SHA512

    7dad733b4ffe7cd85b7543eead9eddbfb18e36ddf92b0c4939e0ea100b2729b187544d4b46a83c6f2b55116c3c502864f3ef2d6f57f30f9ba32114040821442d

  • SSDEEP

    1536:6W82C0Db1edMckBI1kmJAhTPY6pnouy8a:6n25DbaMySmJAhbvouta

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2