SandboxTestPacked_VirtualBox_HW_Artefacts[.]exe | Triage

Resubmissions

25/08/2023, 08:20

230825-j8d6kabg8y 6

07/08/2023, 16:15

230807-tqq3hshe9v 3

Sharing

Copy URL Twitter E-mail

General

Target

SandboxTestPacked_VirtualBox_HW_Artefacts.exe
Size

125KB
MD5

8b107443689308e4f4c1a79fe481bebf
SHA1

edba4aba15ea697623fed0043475c5473e6f027d
SHA256

0471a42b4b2bed2b64dcf0fbc8b6f359ba1f77f1719d8f84e3c2c103fdf0efd4
SHA512

3b841a4fb6f8398fbfad844e41fc427dbd8044c99bd6868d288aa4ff7dfa6b112688a8b68ea30652bbae8b051a09e3f89a94cd41179de1131a3331bff5226c3b
SSDEEP

3072:FRuv8Z94DZjW67UScpjs1nwMyQOWBN6Ym7LDj4W8:fuv8j4VWVSceg7Y+7LQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SandboxTestPacked_VirtualBox_HW_Artefacts.exe

Files

SandboxTestPacked_VirtualBox_HW_Artefacts.exe
.exe windows x64

19218b495137c37a0dd76effe2296f6e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

user32

GetSystemMetrics

ole32

CoInitializeEx

oleaut32

VariantClear

ws2_32

inet_addr

Sections

.MPRESS1
Size: 120KB - Virtual size: 332KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE