Extracted

• • Target

    54b7d5752fe4745aa4853a78ca45cc8d67822a83084970d3208a71416847f11d.exe

  • Size

    466KB

  • MD5

    2f4397a18a4deed68940ab94a69402c5

  • SHA1

    d58a7d3a479d88bed63a43bfd3fc0c4d1ce66797

  • SHA256

    54b7d5752fe4745aa4853a78ca45cc8d67822a83084970d3208a71416847f11d

  • SHA512

    df9570e7dcb5e9c8c4ddb120476314d1915f118a131c8279580398d2294cf33088c511988af4202c23d241c9a1d95769f4be3b9ddf56d7c3bb4fe4d36276d40e

  • SSDEEP

    12288:Y6twjLHj/8/GcHUIdPPzEmvTnabAh0ZnAr1Uw:Y6tQCG0UUPzEkTn4AC1+P

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2