Extracted

• • Target

    9f1ca922355d01a48ef3ea5f7212da8dd3e4fcf4ae5941ad3570e496b021776cN.exe

  • Size

    76KB

  • MD5

    ea4418e8ce53561761bf49e64045ff70

  • SHA1

    42b28ea88a157e7a7188142bbaeb1ff24684ca3c

  • SHA256

    9f1ca922355d01a48ef3ea5f7212da8dd3e4fcf4ae5941ad3570e496b021776c

  • SHA512

    fa94e7c4edff898aee9eaf15cd91636d216cd7a0cb8c5b3c7f5edb8879e137ff5c6523d55a67801d5e9419fa16bd0bf5cc736151ca4790b246e38aaeafe23916

  • SSDEEP

    1536:9HxkDvWdB7O9dKymMyCMGni2Lz1LaRQLDEn:9RkjWjK9ABpGzlaRQLS

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2