Extracted

• • Target

    24ac1a6084fe86b3441c9eb8ffe4f569646b99ce4b8761bd5babcab5b266d299

  • Size

    80KB

  • MD5

    e3a68a705b6add2f1367e3088cdab0db

  • SHA1

    93dfb16e3f7f9fabf861d46fb1bdb87a562b7594

  • SHA256

    24ac1a6084fe86b3441c9eb8ffe4f569646b99ce4b8761bd5babcab5b266d299

  • SHA512

    b73288bd5f8e92c5dcfde72ffa92ab57e4e08a0818d2b81cd5e3164ac8568d661fbc1e4cd05f39a31b87c565439ebff653652a7c6c7170bb7b03ae5f36a65783

  • SSDEEP

    1536:9HxkDvWdB7O9dKymMyCMGni2Lz1LaRQLDEaB:9RkjWjK9ABpGzlaRQL5B

  Score

  10^/10

  urelasdiscoverytrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2