Extracted

• • Target

    5860650869b367315654ffc6d2123db852e652ece60193d043e4863e232811a4.exe

  • Size

    76KB

  • MD5

    c02c7af290541f1ed6a6df1cc388d903

  • SHA1

    8ace262c992cce50897b6e3d2d94efeec115da70

  • SHA256

    5860650869b367315654ffc6d2123db852e652ece60193d043e4863e232811a4

  • SHA512

    74cfae7f1405bfb0ebd03bc1c4db5f6fde2b73b98f1c64deef0d487c6dd85c5813121f775e38c27bc93255476a61f30ccd6cabc636da58f8eff3b1e4c044b030

  • SSDEEP

    1536:9HxkDvWdB7O9dKymMyCMGni2Lz1LaRQLDEr:9RkjWjK9ABpGzlaRQL4

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2