winbox.exe

MD5:
f4da909223d7f4eb3bd137cfc150d460

SHA-1:
6794b5e7ff7439ee89966b6251cbe3c5e4f575ae

SHA-256:
271bbb503618f57447c62c6dd9391911fd07883dd8d631abf5f760066f8b17dd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 6:42:50 PM UTC  (today)

File size:
111.5 KB (114,176 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
12/28/2010 4:46:55 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.56

CTPH (ssdeep):
3072:TkMwuGcvhkLdNPFZJ16ckEdzUdALlOXu:iuGRztjkEoA0

Entry address:
0x1220

Entry point:
55, 89, E5, 83, EC, 08, C7, 04, 24, 01, 00, 00, 00, FF, 15, 64, B4, 41, 00, E8, C8, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 89, E5, 83, EC, 08, C7, 04, 24, 02, 00, 00, 00, FF, 15, 64, B4, 41, 00, E8, A8, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 8B, 0D, 88, B4, 41, 00, 89, E5, 5D, FF, E1, 8D, 74, 26, 00, 55, 8B, 0D, 74, B4, 41, 00, 89, E5, 5D, FF, E1, 90, 90, 90, 90, 55, 89, E5, 83, EC, 08, E8, 45, 0C, 01, 00, C7, 04, 24, D0, 92, 41, 00, B8, 10, A0, 41, 00, 89, 44, 24, 04, E8, 60, FC, 00, 00...
 
[+]

Entropy:
5.8729

Packer / compiler:
Dev-C++ 4.9.9.2

Code size:
73 KB (74,752 bytes)

The file winbox.exe has been seen being distributed by the following 29 URLs.

http://1107.webmikrotik.com/modulos.php?nome=downloads&baixar=winbox.exe

http://noc.interduo.pl/winbox.exe

http://s8848.chomikuj.pl/File.aspx?e=JNneGdIGL7g3orkU5DcDBVuajCkrvFfEkTOW_pynlJ2wAjR8saO3PFx_G_gGb1VeLabKXqiGqD5JXrm82jMqpxAeVn50_VupMCw1r6QTwmJ6An83Wvgd_lsz00nIsmW131ZSMY75Z_Ugg-qhOdM0Zg&pv=2

http://ccs.infospace.com/ClickHandler.ashx?encp=ld=20160625&app=1&c=sidecubes3&s=sidecubes3&rc=sidecubes3&dc=&euip=36.82.174.157&pvaid=ec992b8ba6f5433d9a200448640792c1&dt=Desktop&fct.uid=7eb1eabd8d4f441bb3dbd95ad0cebf00&en=pvKm9PEGCNlWmLpwOzrnXuWZYwG16qLvAq26IVVoAMZ8zBN3CAyPnw==&ru=http://www.mikrotik.co.id/getfile.php?nf=winbox-2.2.18.exe&ap=1&coi=1494&npp=1&p=0&pp=0&mid=9&ep=1&du=www.mikrotik.co.id/getfile.php?nf=winbox-2.2.18.exe&hash=B8E54CEDCC42A1F24DA2C84567CB7C08&cop=main-title

http://util.iconecta.net.br/.../winbox.exe

http://ccs.infospace.com/ClickHandler.ashx?encp=ld=20161029&app=1&c=airziphosted&s=airzip&rc=Airziphosted&dc=&euip=36.71.177.192&pvaid=7a13812c3553464c80e654f94eda0220&dt=Desktop&fct.uid=ba59c7f9c6c848e4858752f62496fd1a&en=L3uXZvn7lGF+J7ci1QCbRRmYxNKoXGrwRc4+RpZGyqXHcwwvo6YaTffPQ7suqrf9&ru=http://www.mikrotik.co.id/getfile.php?nf=winbox-2.2.18.exe&coi=1494&npp=1&p=0&pp=0&mid=9&ep=1&du=www.mikrotik.co.id/getfile.php?nf=winbox-2.2.18.exe&hash=FBAAD03A5981CE24B0BE10A59868ECE5&ap=1&cop=main-title

https://docs.google.com/uc?authuser=0&id=0B-QkzqNLbWvaenQwOVBVWnZEbVE&export=download

http://files.mbavbs.com/mikrotik/.../winbox_2.2.18.exe

https://docs.google.com/uc?id=0B2rtSYSGWQNPSXZ5bFk3Rk5uMzg&export=download

http://177.39.196.42/down.php?id=1

https://onedrive.live.com/download.aspx?cid=7BE22F3E6D666D7C&authKey=!AASe6uHETnfFWqg&resid=7BE22F3E6D666D7C!32373&ithint=.exe

http://soporte.data-alliance.net/public_html/wp-content/uploads/2013/.../winbox.exe

http://admin.roset.cz/Mikrotik/.../winbox_2_2_18.exe

http://www.mikrotikacademybd.com/.../winbox.exe

Scan winbox.exe - Powered by Reason Core Security