winbox.exe

MD5:
946bb6e015bd6e70b4a68608e3c3c5ab

SHA-1:
9f58bcd67e1792334657c5e4f4417ef5e0c18491

SHA-256:
a37116f634e220dd05aedc34ca42664a81c21ede2de3a9e1068aadfdb630a7d6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/14/2024 9:22:09 PM UTC  (today)

File size:
1.5 MB (1,581,582 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
11/15/1999 12:30:45 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:dlob4WIhYyT7T5uD+fteT02TvU9RgH5ND035+CjA+R:Lo0WIh5T7T5uD+fIlCjA+R

Entry address:
0x12C0

Entry point:
83, EC, 1C, C7, 04, 24, 02, 00, 00, 00, FF, 15, 9C, D8, 55, 00, E8, AB, FE, FF, FF, 8D, 74, 26, 00, 8D, BC, 27, 00, 00, 00, 00, A1, DC, D8, 55, 00, FF, E0, 89, F6, 8D, BC, 27, 00, 00, 00, 00, A1, C0, D8, 55, 00, FF, E0, 90, 90, 90, 90, 90, 90, 90, 90, 90, A1, 00, 25, 51, 00, 85, C0, 74, 41, 55, 89, E5, 83, EC, 18, C7, 04, 24, 00, 30, 51, 00, E8, 2D, 8D, 0A, 00, 83, EC, 04, 85, C0, BA, 00, 00, 00, 00, 74, 15, C7, 44, 24, 04, 0E, 30, 51, 00, 89, 04, 24, E8, 09, 8D, 0A, 00, 83, EC, 08, 89, C2, 85, D2, 74, 09...
 
[+]

Entropy:
6.5245

Code size:
1.1 MB (1,116,672 bytes)

The file winbox.exe has been seen being distributed by the following 32 URLs.

http://download1439.mediafire.com/yjvpf7v51jsg/.../winbox-3.4.exe

http://10.10.10.4/data/aplikasi/.../winbox.exe

https://onedrive.live.com/.../P3xXgEVkDCJ1MFLjY=3&ithint=.exe

https://doc-0g-b4-docs.googleusercontent.com/docs/securesc/8ijbsip216u9glhpssailljmmddn86hl/15gvjuqvoel47chb6qcc45qdc79faoit/1474120800000/.../05082438811917686504/0B72CL5I9PQjMa1M4cU5zUlJaY00?e=download

https://api.edmodo.com/files/.../download?f=bhgx25yevqc4zyk3jw6tm0ias

http://download2.mikrotik.com/routeros/winbox/.../winbox.exe

http://download2.mikrotik.com/routeros/winbox/.../winbox.exe

http://103.28.3.29:780/.../winbox.exe

http://179.234.146.21/.../winbox.exe

https://onedrive.live.com/download.aspx?cid=7BE22F3E6D666D7C&authKey=!ALU_7KtP74L0ouQ&resid=7BE22F3E6D666D7C!32491&canary=gDqO5McHDISZ5YIjibOcZvVIeZKjJmq7H1BjJvidYas=4&ithint=.exe

https://www.google.com/url?hl=en&q=http://download2.mikrotik.com/routeros/winbox/.../winbox.exe&source=gmail&ust=1469360457506000&usg=AFQjCNHSMEv7mavpSnvsdr22XBSk_GSrag

http://download2.mikrotik.com/routeros/winbox/.../winbox.exe

http://192.168.2.1/.../winbox.exe

https://onedrive.live.com/.../eQ06OSrHit C9I9yu0baOBDe2fwxxPBWyS74=0&ithint=.exe

http://download2.mikrotik.com/routeros/winbox/.../winbox.exe

https://onedrive.live.com/download.aspx?cid=7BE22F3E6D666D7C&authKey=!ALU_7KtP74L0ouQ&resid=7BE22F3E6D666D7C!32491&ithint=.exe

https://files.slack.com/files-pri/T09QD224E-F2029R39B/.../winbox__2_.exe

http://10.10.10.15/.../winbox.exe

http://192.168.30.1/.../winbox.exe

Latest 30 of 32 download URLs

Scan winbox.exe - Powered by Reason Core Security