Extracted

• • Target

    b22bf08f465cc3e0c83b82cd1c6da2ad5328f47497a329723bafe0deab19e5b9

  • Size

    79KB

  • MD5

    f2d18b99ca55a93a8b5b5da1c43505d8

  • SHA1

    479f3db10a181e7a1c2ea2fe8ca498154f96fce6

  • SHA256

    b22bf08f465cc3e0c83b82cd1c6da2ad5328f47497a329723bafe0deab19e5b9

  • SHA512

    a7842595a86b1d0e7a79e044148b72bddd31103bf739b93f5e889c111dcf30df4339e11b6ba641a4d5df1e0b0704774e341c1453d20ded9901e5426f04c23540

  • SSDEEP

    1536:9HxkDvWdB7O9dKymMyCMGni2Lz1LaRQLDErn:9RkjWjK9ABpGzlaRQLen

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2