home

SandboxieInstall.exe

Sandboxie

Invincea, Inc.

This is a self-extracting archive and installer. The file has been seen being downloaded from indir.gezginler.net and multiple other hosts.
Publisher:
Sandboxie Holdings, LLC  (signed by Invincea, Inc.)

Product:
Sandboxie

Description:
Sandboxie Installer

Version:
5.04

MD5:
ca3746b1e75f65b0f0b4052d49b95501

SHA-1:
2d645e35e0bb6139536ca34fe193541554f0942b

SHA-256:
16dde7e308e50e8db128fac57e86c51905eb8803455b036f39fb9bc50a8d6d5b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/26/2024 2:40:30 AM UTC  (today)

File size:
8.1 MB (8,518,280 bytes)

Product version:
5.04

Copyright:
Copyright © 2004-2015 by Sandboxie Holdings, LLC

Original file name:
SandboxieInstall.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\sandboxieinstall.exe

Digital Signature
Signed by:
Invincea, Inc.

Authority:
DigiCert Inc

Valid from:
3/18/2015 12:00:00 AM

Valid to:
4/17/2018 1:00:00 PM

Subject:
CN="Invincea, Inc.", O="Invincea, Inc.", L=Fairfax, S=Virginia, C=US

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
05DE398F4AC5D00E254C9295F336CF4F

File PE Metadata
Compilation timestamp:
9/21/2015 8:12:46 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
196608:eGTvlRn+N1IbInWiiajKfHlZ49KhaproT9dih:eG7lRn+Fnea2HL48IrO9d+

Entry address:
0x14B2

Entry point:
E8, 45, 17, 00, 00, E9, 1E, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 45, 08, 8B, 00, 81, 38, 63, 73, 6D, E0, 75, 2A, 83, 78, 10, 03, 75, 24, 8B, 40, 14, 3D, 20, 05, 93, 19, 74, 15, 3D, 21, 05, 93, 19, 74, 0E, 3D, 22, 05, 93, 19, 74, 07, 3D, 00, 40, 99, 01, 75, 05, E8, 95, 17, 00, 00, 33, C0, 5D, C2, 04, 00, 68, BC, 14, 40, 00, FF, 15, 64, 80, 40, 00, 33, C0, C3, 8B, FF, 55, 8B, EC, 56, 8B, 75, 08, 33, C0, EB, 0F, 85, C0, 75, 10, 8B, 0E, 85, C9, 74, 02, FF, D1, 83, C6, 04, 3B, 75, 0C, 72, EC, 5E, 5D, C3, 8B, FF...
 
[+]

Entropy:
7.9888  (probably packed)

Code size:
25 KB (25,600 bytes)

The file SandboxieInstall.exe has been seen being distributed by the following 12 URLs.

http://indir.gezginler.net/i/17550/.../

http://filehippo.com/download/file/.../

http://dw.uptodown.com/dl/1447005857/.../sandboxie-5-04-en-win.exe

http://dw6.uptodown.com/dw/1443542846/.../sandboxie-5-04-en-win.exe

http://sandboxie.com/SandboxieInstall.exe

http://dw.uptodown.com/dl/1445807283/.../sandboxie-5-04-en-win.exe

http://www.filehorse.com/download/file/.../

http://www.sandboxie.com/.../SandboxieInstall-504.exe

http://ftp-stahuj.centrum.cz/dl/70c1f6294a761f5ff6c957e993b31bb1/560d30f1/stahuj/download/software/secured/s/sandboxie/.../SandboxieInstall.exe

http://download.findmysoft.com/2015/09/.../Sandboxie_5.04.exe

http://dl.cdn.chip.de/downloads/.../SandboxieInstall_5.04.exe

http://www.sandboxie.com/SandboxieInstall.exe

Scan SandboxieInstall.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.