Extracted

• • Target

    2346f7fc466a2579b7db4326b349cd9115c9bde7bc4247ee6492fc011e6b6efd.exe

  • Size

    76KB

  • MD5

    3539c6479ddd574f3caefaf10738f98e

  • SHA1

    118ff084a5b3c6e4d2e5e164e5bd005eae8a5628

  • SHA256

    2346f7fc466a2579b7db4326b349cd9115c9bde7bc4247ee6492fc011e6b6efd

  • SHA512

    b04f27452e6208941039ecf3e3c29bbca97377b78662720983075aae960e8047e812032d06ebe64f413873c96912576df116ceeab6a2145ff2c29dcba9eeb00a

  • SSDEEP

    1536:9HxkDvWdB7O9dKymMyCMGni2Lz1LaRQLDEc:9RkjWjK9ABpGzlaRQLt

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2