Extracted

• • Target

    713e3a871e4fb2e0b256004a522de592851b3c2772319eaff9370164aa1dea46N.exe

  • Size

    6.5MB

  • MD5

    dfd636e10b468d1ff62cba3cb4234850

  • SHA1

    20ae9ae3d446e1ce63da8893944ab7dbac6d9083

  • SHA256

    713e3a871e4fb2e0b256004a522de592851b3c2772319eaff9370164aa1dea46

  • SHA512

    6cc4e0273e52b3904db99a689f47dce10aea52d4f7295c31cfa2ab0d58acdaf1c2a1d253845dc0cf80c90c3146b46e6f70ababbaacbc766e64c2e8b03efd6caf

  • SSDEEP

    98304:Roc5swrA2XGxlHKcjTjNk3o659yrnfKtDrKIAyyks+Ctf8mQZVS2:i0LrA2kHKQHNk3og9unipQyOaO2

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2