home

admz_ctrlagentsvc.exe

EduIQ.com Damjan Kriznik s.p.

It runs as a windows Service named “AdminZilla Network Administrator”.
Publisher:
EduIQ.com Damjan Kriznik s.p.  (signed and verified)

MD5:
bb3ead9d07c5dd2ff353d32f85e2de2c

SHA-1:
dad0431ea808b37d92e1e423396cf547aa69648d

SHA-256:
a54ae02754a8ee408ac3fc69d3cfd9ed9aca18defecbd0f09a83b278a579bb31

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/8/2024 11:41:25 AM UTC  (today)

File size:
2.4 MB (2,542,192 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\adminzilla network administrator\bin\admz_ctrlagentsvc.exe

Digital Signature
Signed by:
EduIQ.com Damjan Kriznik s.p.

Authority:
COMODO CA Limited

Valid from:
8/15/2014 5:30:00 AM

Valid to:
8/15/2016 5:29:59 AM

Subject:
CN=EduIQ.com Damjan Kriznik s.p., O=EduIQ.com Damjan Kriznik s.p., STREET=SLOVENJA VAS 2D, STREET=HAJDINA, L=HAJDINA, S=SLOVENIA, PostalCode=2288, C=SI

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
389E5A14A04DF738F2D8F108F966BAC6

File PE Metadata
Compilation timestamp:
8/9/2016 11:37:04 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
2.23

CTPH (ssdeep):
49152:R2eWFDQ2xA8RDBTtcV3mrsR0qoZrDErR71Vzo:UfxA8mQre0qCErR71Zo

Entry address:
0x14E0

Entry point:
83, EC, 0C, C7, 05, F0, 51, 66, 00, 00, 00, 00, 00, E8, BE, AC, 1A, 00, 83, C4, 0C, E9, 86, FC, FF, FF, 90, 90, 90, 90, 90, 90, A1, 04, F1, 61, 00, 85, C0, 74, 43, 55, 89, E5, 83, EC, 18, C7, 04, 24, 20, 00, 62, 00, FF, 15, 54, 6D, 66, 00, BA, 00, 00, 00, 00, 83, EC, 04, 85, C0, 74, 16, C7, 44, 24, 04, 2E, 00, 62, 00, 89, 04, 24, FF, 15, 5C, 6D, 66, 00, 83, EC, 08, 89, C2, 85, D2, 74, 09, C7, 04, 24, 04, F1, 61, 00, FF, D2, C9, F3, C3, 66, 90, 55, 89, E5, 5D, C3, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90...
 
[+]

Entropy:
6.1821

Code size:
2.1 MB (2,214,912 bytes)

Service
Display name:
AdminZilla Network Administrator

Type:
Win32OwnProcess, InteractiveProcess


Scan admz_ctrlagentsvc.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.