Extracted

• • Target

    0f4b2104a845f9f9012595cd22fa822139dd457f3b4103777f4e7d27c4207ef2N.exe

  • Size

    427KB

  • MD5

    cd5e1cd136c749a75236b4e9ebe04540

  • SHA1

    c6a5e2c1074851e2ac4a820e1023e1ade015240e

  • SHA256

    0f4b2104a845f9f9012595cd22fa822139dd457f3b4103777f4e7d27c4207ef2

  • SHA512

    3c847064eb648190a62bad7a516d8622c1c051d855b5265fd5236f3d3d6c13b36322beb5a57b7753e512d3fb3fd8040c5f88a1b73d364ff71b75d0f872be6cad

  • SSDEEP

    6144:WzU7blKaP2iCWhWapKRaRXOkN4Swel6f3IsInOdsG:YU7M5ijWh0XOW4sEfeOh

  Score

  10^/10

  urelasaspackv2discoverytrojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2