home

estoque.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from www.adisioribeiro.com.br.
MD5:
b686971790deed3decf87e5f61f0accb

SHA-1:
bff742bf914d4afed89f5a87255fea9f4b77b7b8

SHA-256:
7b2861fa7227f3f8e18c634d566d051d5b7615cbf527b9080d0f64685e47925d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 11:32:33 PM UTC  (a few moments ago)

File size:
5.5 MB (5,718,016 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\estoque.exe

File PE Metadata
Compilation timestamp:
6/19/1992 7:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:vPwYRLiaIoCdLiPaKE9nOPyTC15oc7TQp4fsbc83GQIelKF/z7DxJLISAeA0Fj:vYYRLixSbpR7Up3bcqGQIelKF/z7Df

Entry address:
0x3086C8

Entry point:
55, 8B, EC, 83, C4, F0, 53, B8, F8, 7A, 70, 00, E8, 4F, EB, CF, FF, 8B, 1D, 3C, 1A, 71, 00, 68, 30, 88, 70, 00, 68, 3C, 88, 70, 00, E8, DA, F5, CF, FF, 85, C0, 0F, 85, 31, 01, 00, 00, 8B, 03, E8, BB, 09, D6, FF, 8B, 03, BA, 54, 88, 70, 00, E8, BB, 05, D6, FF, 8B, 0B, B2, 01, A1, 8C, 78, 70, 00, E8, 69, 92, D5, FF, 8B, 15, 48, 11, 71, 00, 89, 02, A1, 48, 11, 71, 00, 8B, 00, E8, 91, D4, D5, FF, A1, 48, 11, 71, 00, 8B, 00, E8, AD, 0C, D4, FF, 8B, 0D, AC, 1B, 71, 00, 8B, 03, 8B, 15, 50, 74, 5C, 00, E8, 86, 09...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
3 MB (3,176,960 bytes)

The file estoque.exe has been seen being distributed by the following URL.

http://www.adisioribeiro.com.br/estoque.exe

Scan estoque.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.