home

mbox2w.exe

Teggo MoleBox

Teggo Software Ltd.

Publisher:
Teggo Software Ltd.  (signed and verified)

Product:
Teggo MoleBox

Description:
Packer MoleBox

Version:
2, 7, 0, 3682

MD5:
620236768f8d840d5eda12b365e5ad27

SHA-1:
5182c4ba71c4fb7a38a9c663c18f0081d8d913d6

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/23/2024 1:53:02 PM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.CDB
1.3.0.4959

File size:
596.4 KB (610,736 bytes)

Product version:
2, 7, 0, 3682

Copyright:
Copyright © 2002-2008

Original file name:
mbox2w.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\negara\files\mbox2w.exe

Digital Signature
Signed by:
Teggo Software Ltd.

Authority:
Teggo Software Ltd.

Valid from:
10/21/2008 11:40:27 AM

Valid to:
1/1/2040 3:29:59 AM

Subject:
E=monster@teggo.com, CN=Teggo Software, O=Teggo Software Ltd.

Issuer:
E=monster@teggo.com, CN=Teggo Root CA, O=Teggo Software Ltd.

Serial number:
93BCCEE6724371A24B0B280EE6ABD459

File PE Metadata
Compilation timestamp:
11/12/2009 3:15:02 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:dM/ZYS5CGA5lrRlPmc4kij+/Rj1Qv8ixsQlbz8tkN6V9vVtPMYGsO:U35nqDQjsRt7QRz8G69vVNMYGR

Entry address:
0x22D6

Entry point:
55, 8B, EC, 6A, FF, 68, 00, 00, 00, 00, 68, 00, 00, 00, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, E8, AF, FF, FF, FF, 68, E9, E4, AE, 4E, 51, E8, 26, FF, FF, FF, E8, 43, FF, FF, FF, 68, 34, 69, 46, 45, 55, 52, E8, 42, FF, FF, FF, 5B, FF, 31, 87, 1C, 24, 68, 03, 03, 01, 15, 68, 86, 4C, FA, FF, 68, 2D, 3A, B8, 6F, 55, E8, 79, FF, FF, FF, 52, E8, 1C, FF, FF, FF, 53, 68, A8, D5, 5C, FE, 68, E7, BC, AE, 01, E8, 1A, FF, FF, FF, 68, 1A, 95, 21, 64, 68, B1, E1, 15, 43, 68, 5C, EF, C0, 66, 68, 0B...
 
[+]

Entropy:
7.9554

Developed / compiled with:
Microsoft Visual C++

Code size:
196 KB (200,704 bytes)

Scan mbox2w.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.