Extracted

• • Target

    ef90c36a0b256ba711493b66fe20500123dbfd30263c2598e1f392bf547c75d5.exe

  • Size

    463KB

  • MD5

    f0f931769302c8ea85a3b5249f1c46d9

  • SHA1

    e316425b3c0c7bd022387a03676a2bce3e6d4195

  • SHA256

    ef90c36a0b256ba711493b66fe20500123dbfd30263c2598e1f392bf547c75d5

  • SHA512

    89ce7cbcc3b0441f3d50379271c7a13d93bfd95926394631f5ab2d7e284287cac3b58e09ff2c751a6506c289dddfbe22281e9444dde088b5e95d82e83278e94f

  • SSDEEP

    6144:P8Eoe/IebBVMweZGhHdJBV70FVKLbfW2x8VyMsmD6gzOmjpi+pMJQ8uUm9unpm+:vDdUGhHdJ370FVKmP0Ml+gzzjp+lsud

  Score

  10^/10

  urelasdiscoverytrojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2