Extracted

• • Target

    e21bd1ce8652de07ebb8fc2ac63cd1c8_JaffaCakes118

  • Size

    536KB

  • MD5

    e21bd1ce8652de07ebb8fc2ac63cd1c8

  • SHA1

    b325a20b7eef21aee68c2c89502cece3778d8eb4

  • SHA256

    546850b46506512677c83c7688c6e7c832dbf6d3ceefb5d75bcebfb8bc738843

  • SHA512

    71337eb0e8b77197af558bb5bae2e46ab269a941c1d79b727fbcc03429e89a3167e451077b6e6c9fb351a14b45496aeaf33393401f0751d572b89d44dfa3bdb6

  • SSDEEP

    12288:q0nPhglq2Uyt4R/b2G/0hznQGoexBU/NP+:q0P/k4lb2wKat+

  Score

  10^/10

  urelasdiscoverytrojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2