Extracted

• • Target

    2025-04-04_b785705f4c8d06c986ccf1cbcbc28a45_amadey_rhadamanthys_smoke-loader

  • Size

    333KB

  • MD5

    b785705f4c8d06c986ccf1cbcbc28a45

  • SHA1

    9a9549c26b16c833ebd6b7791ada954dd1935a01

  • SHA256

    67fb64998492982423b0d8690ff06ec9c55e8c519ce007fc09d353bcc1472892

  • SHA512

    4b99c89351928ff99575bebb1de908582d08c9d44d3bd748e6eac8090aafdacabe01002725dd1639f7c392d3f1c0cfe591f7a1fe503df05e6ff55d10ebbc022a

  • SSDEEP

    3072:NdXi+V5Kgxpdxj8gbib20xTyst542t8ZHWBow8+zoB91wDQgJl0x2AEMenKbZisT:Nd7rpL43btmQ58Z27zw39gY2FeZhmzO

  Score

  10^/10

  urelasaspackv2discoverytrojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Urelas family

    urelas

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  behavioral1