Extracted

• • Target

    8a72a00503f6165cdb13acd74fca6e49837c99892582b19c420c0777ce32764f.exe

  • Size

    541KB

  • MD5

    e848cc55bb658894a350d1c853a1567b

  • SHA1

    d6e57e2c4ade50f89ee9a5b48268bfab2e9db001

  • SHA256

    8a72a00503f6165cdb13acd74fca6e49837c99892582b19c420c0777ce32764f

  • SHA512

    32b495ec4b7674a5750e8c63b2fa5bd4af7ccef8c9d556f82c1ea2555b1c78719495e78064615e37fad9358d07c2ec6f031d2b751abb724deff26e2be6d82af9

  • SSDEEP

    12288:T52PxDgZo3ijnieactYDG7MzZSHJcvEj8dmoSxuz:92SLi70T7Mifju

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2