home

sandboxieinstall-512.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from www.sandboxie.com.
MD5:
f9e67b3613270cd383bb09ff0d87ab3d

SHA-1:
645e13b9ee1934ed0002044fcc479bc50397d7e6

SHA-256:
d7db44ae4bce3d5d916f34b4eef4caf91f0ce9fc943e46120911c3730fbb0328

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 11:04:06 PM UTC  (a few moments ago)

File size:
568.3 KB (581,964 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\sandboxieinstall-512.exe

File PE Metadata
Compilation timestamp:
6/15/2016 5:06:46 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:OCGsdHgg3X7KSdyJCLykj16Da0vm6MIOppZxQj282W8b:OC5dHggGPZv3Opp7829b

Entry address:
0x14B2

Entry point:
E8, 45, 17, 00, 00, E9, 1E, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 45, 08, 8B, 00, 81, 38, 63, 73, 6D, E0, 75, 2A, 83, 78, 10, 03, 75, 24, 8B, 40, 14, 3D, 20, 05, 93, 19, 74, 15, 3D, 21, 05, 93, 19, 74, 0E, 3D, 22, 05, 93, 19, 74, 07, 3D, 00, 40, 99, 01, 75, 05, E8, 95, 17, 00, 00, 33, C0, 5D, C2, 04, 00, 68, BC, 14, 40, 00, FF, 15, 64, 80, 40, 00, 33, C0, C3, 8B, FF, 55, 8B, EC, 56, 8B, 75, 08, 33, C0, EB, 0F, 85, C0, 75, 10, 8B, 0E, 85, C9, 74, 02, FF, D1, 83, C6, 04, 3B, 75, 0C, 72, EC, 5E, 5D, C3, 8B, FF...
 
[+]

Entropy:
7.7706  (probably packed)

Code size:
25 KB (25,600 bytes)

The file sandboxieinstall-512.exe has been seen being distributed by the following URL.

http://www.sandboxie.com/.../SandboxieInstall-512.exe

Scan sandboxieinstall-512.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.