ROHUND0050_2023-01-26_12_33_47[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ROHUND0050_2023-01-26_12_33_47.zip
Size

555KB
MD5

1ce35d420c34cb187b754d72f6f6eb18
SHA1

f8c48dfa1bda8bf2ade48c341bbdba419f1c9848
SHA256

c6a0e15a3b90614d78327f3f5a9e3d7905d259b64ba34625fd88f48d3f3998bf
SHA512

77166995249744f90ca9811d36a24dc74bad76a6684f934a124c0d8e8eba01cbf61cddebe51acc305d25fd163f25ddf65bdaef8910589253c40947235a5f378f
SSDEEP

12288:+nPJxC/s0HqJrKainQL25SDEfWM8w8KuYloSbx33i2KrTden9:5UGRQL+WEn/8bY3bpi2YEn9

Score

N/A

Malware Config

Signatures

Files

ROHUND0050_2023-01-26_12_33_47.zip
.zip

Password: Infected-123!
Device/HarddiskVolume4/Program Files (x86)/AJAN ELECTRONICS/AJANCAM V8.0/PackedAssembly/AjancamMigration/AJANCAM.Data.Migration.exe
.exe windows x86

Password: Infected-123!

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 553KB - Virtual size: 553KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

0DUOk7+o
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
manifest.json