Category | Started | Completed | Duration | Log |
---|---|---|---|---|
FILE | 2023-05-15 07:45:10 | 2023-05-15 07:48:17 | 187 seconds | Show Log |
Name | Label | Manager | Started On | Shutdown On |
---|---|---|---|---|
cuckoo1 | cuckoo1 | VirtualBox | 2023-05-15 07:45:10 | 2023-05-15 07:48:17 |
File Name | simplewall-3.6.7-setup.exe |
---|---|
File Size | 656412 bytes |
File Type | PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive |
MD5 | c0aed1d873f74de0afb84c9bb57334e7 |
SHA1 | 64e754393264c5f15f290ca1ff9eaa77b17f1798 |
SHA256 | 864418c6a03719bf98715fd6a7a91013e55de79951dada12e918481913d27b22 |
SHA512 | f16fbfb31d60d3c036d2bdc0bf97b2386bb029c655bfd80506737263662e410c84cdaf66aec1c6f6817b039a53930d85b8e4e0b64d281f1702f36e62a917029f |
CRC32 | C061F80B |
Ssdeep | 12288:4YT9C8cvCywkb8BkPLdJXO1gzxqDXCICVYLq16KHDV54YVuw/9Q24xR1FcAxvPpH:4YTs8VPkQBkP/O1AqDtC4IRDbhVv2NH9 |
ClamAV | None matched |
Yara | None matched |
No signatures
No hosts contacted.
No domains contacted.
Image Base | 0x00400000 |
---|---|
Entry Point | 0x00403640 |
Reported Checksum | 0x00000000 |
Actual Checksum | 0x000ac67d |
Minimum OS Version | 4.0 |
Compile Time | 2021-09-25 16:56:47 |
Icon | |
Icon Exact Hash | 6d345a2d18a737105b8a673c950463bb |
Icon Similarity Hash | ff1d6bfc9c25fb800f5d5318b715ce67 |
LegalCopyright | (c) Henry++. All rights reversed. |
---|---|
InternalName | simplewall |
FileVersion | 3.6.7 |
CompanyName | Henry++ |
Comments | https://www.henrypp.org |
ProductName | simplewall |
ProductVersion | 3.6.7 |
FileDescription | simplewall |
OriginalFilename | simplewall-3.6.7-setup.exe |
Translation | 0x0409 0x04e4 |
Name | Virtual Address | Virtual Size | Size of Raw Data | Characteristics | Entropy |
---|---|---|---|---|---|
.text | 0x00001000 | 0x00006676 | 0x00006800 | IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ | 6.42 |
.rdata | 0x00008000 | 0x0000139a | 0x00001400 | IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ | 5.14 |
.data | 0x0000a000 | 0x00020378 | 0x00000600 | IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE | 4.11 |
.ndata | 0x0002b000 | 0x0002c000 | 0x00000000 | IMAGE_SCN_CNT_UNINITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE | 0.00 |
.rsrc | 0x00057000 | 0x00001d28 | 0x00001e00 | IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ | 4.28 |
Offset | 0x0000a400 |
Size | 0x0009601c |
Name | Offset | Size | Language | Sub-language | Entropy | File type |
---|---|---|---|---|---|---|
RT_BITMAP | 0x000572e0 | 0x00000666 | LANG_ENGLISH | SUBLANG_ENGLISH_US | 2.83 | data |
RT_ICON | 0x00057c30 | 0x00000128 | LANG_ENGLISH | SUBLANG_ENGLISH_US | 2.85 | GLS_BINARY_LSB_FIRST |
RT_ICON | 0x00057c30 | 0x00000128 | LANG_ENGLISH | SUBLANG_ENGLISH_US | 2.85 | GLS_BINARY_LSB_FIRST |
RT_DIALOG | 0x00058360 | 0x000000ee | LANG_ENGLISH | SUBLANG_ENGLISH_US | 2.93 | data |
RT_DIALOG | 0x00058360 | 0x000000ee | LANG_ENGLISH | SUBLANG_ENGLISH_US | 2.93 | data |
RT_DIALOG | 0x00058360 | 0x000000ee | LANG_ENGLISH | SUBLANG_ENGLISH_US | 2.93 | data |
RT_DIALOG | 0x00058360 | 0x000000ee | LANG_ENGLISH | SUBLANG_ENGLISH_US | 2.93 | data |
RT_DIALOG | 0x00058360 | 0x000000ee | LANG_ENGLISH | SUBLANG_ENGLISH_US | 2.93 | data |
RT_DIALOG | 0x00058360 | 0x000000ee | LANG_ENGLISH | SUBLANG_ENGLISH_US | 2.93 | data |
RT_GROUP_ICON | 0x00058450 | 0x00000022 | LANG_ENGLISH | SUBLANG_ENGLISH_US | 1.97 | MS Windows icon resource - 2 icons, 16x16, 16-colors |
RT_VERSION | 0x00058478 | 0x00000328 | LANG_ENGLISH | SUBLANG_ENGLISH_US | 3.37 | data |
RT_MANIFEST | 0x000587a0 | 0x00000587 | LANG_ENGLISH | SUBLANG_ENGLISH_US | 5.31 | XML document text |
No hosts contacted.
No TCP connections recorded.
No UDP connections recorded.
No domains contacted.
No HTTP requests performed.
No SMTP traffic performed.
No IRC requests performed.
No ICMP traffic performed.
No CIF Results
No Suricata Alerts
No Suricata TLS
No Suricata HTTP
JSON Report | Download |
---|
Task ID | 1727 |
---|---|
Mongo ID | 64622a152694ed0cf6a0f9ce |
Cuckoo release | 1.3-NG |