a96414b60a209f4eb400324d9c6796378b31274bbc032423868341a935b5a428 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a96414b60a209f4eb400324d9c6796378b31274bbc032423868341a935b5a428
Size

50KB
MD5

47bb3e2a156452c1088b65be3bc61046
SHA1

25dcafd05f3994e3b4437146f33d33f277695392
SHA256

a96414b60a209f4eb400324d9c6796378b31274bbc032423868341a935b5a428
SHA512

676e115f7f924088a880e33ea74a01105f60e0ee64c75e4b21079e12c1ab32aecfeeb2378c702e4f034cfe615c9ba55c30eae5c5a8c68aeb153fa2d8576349c7
SSDEEP

768:/+t2jS/9IrW18LukwTXWEu/vwC/qGPKi8DXZNGUzM3DGUB/dC67rTsMKA7RS:/++rW18KHTXU/qs3EvGLD1B/B/sMK+S

Score

9^/10

Malware Config

Signatures

Molebox Virtualization software 1 IoCs

Detects file using Molebox Virtualization software.

resource	yara_rule
sample	molebox

Files

a96414b60a209f4eb400324d9c6796378b31274bbc032423868341a935b5a428
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 512B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE