winbox.exe

MD5:
994bae2a3a26ba16536c3e991eba2c08

SHA-1:
7670a4d4b07bc8597b0365a8c2f2c1584724e89e

SHA-256:
3ebac0313215c4de1153ed67d1a525231f70999becc628d75a936e8f1545ad97

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 9:04:24 PM UTC  (today)

File size:
1.5 MB (1,577,486 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
11/15/1999 2:00:45 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:p6lbyWVjt69v43GWJHTc2iZGN04K2hzlU9RgH5ND035WVqCjA+r:p6lbpjU9v43GWoZGN04K2hzvVqCjA+r

Entry address:
0x12C0

Entry point:
83, EC, 1C, C7, 04, 24, 02, 00, 00, 00, FF, 15, 9C, C8, 55, 00, E8, AB, FE, FF, FF, 8D, 74, 26, 00, 8D, BC, 27, 00, 00, 00, 00, A1, DC, C8, 55, 00, FF, E0, 89, F6, 8D, BC, 27, 00, 00, 00, 00, A1, C0, C8, 55, 00, FF, E0, 90, 90, 90, 90, 90, 90, 90, 90, 90, A1, E0, 13, 51, 00, 85, C0, 74, 41, 55, 89, E5, 83, EC, 18, C7, 04, 24, 00, 20, 51, 00, E8, 99, 88, 0A, 00, 83, EC, 04, 85, C0, BA, 00, 00, 00, 00, 74, 15, C7, 44, 24, 04, 0E, 20, 51, 00, 89, 04, 24, E8, 75, 88, 0A, 00, 83, EC, 08, 89, C2, 85, D2, 74, 09...
 
[+]

Entropy:
6.5326

Code size:
1.1 MB (1,113,600 bytes)

The file winbox.exe has been seen being distributed by the following 12 URLs.

http://dc698.4shared.com/download/.../winbox.exe

http://172.168.10.1/.../winbox.exe

http://192.168.88.1/.../winbox.exe

http://41.76.133.145/.../winbox.exe

http://172.30.1.41/.../winbox.exe

Scan winbox.exe - Powered by Reason Core Security