95b9b15aa2a89ded9c514e79470eedcb32e56b0570f2ef39be12f5a02ba68040 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

95b9b15aa2a89ded9c514e79470eedcb32e56b0570f2ef39be12f5a02ba68040
Size

478KB
MD5

f55b25e9ee03c0a4845efe5cb9588152
SHA1

409e3dbf3b3ce215d0d1773110e76fdbe0c32df8
SHA256

95b9b15aa2a89ded9c514e79470eedcb32e56b0570f2ef39be12f5a02ba68040
SHA512

b820ae297a29f9e4721043c630586a6ef3887a0838246c05a7aa020dd258ad3afabef0b97e0b0b383ffd18f85db712d9649c1b153e535c9532d42718223864dc
SSDEEP

6144:QYZejJ2mxtCs9BDYox7aVPAeMfNOvJ6OLDkZgMwOBVf3C8jessxZ530sI/jcHPDH:lejg1AeeNMoOfkZIm3lessXG/gqy

Score

9^/10

Malware Config

Signatures

Molebox Virtualization software 1 IoCs

Detects file using Molebox Virtualization software.

resource	yara_rule
sample	molebox

Files

95b9b15aa2a89ded9c514e79470eedcb32e56b0570f2ef39be12f5a02ba68040
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 608B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 562KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 2KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ