home

instekm.exe

Daniel Monteiro

Publisher:
Daniel Monteiro  (signed and verified)

Version:
2.5.0.2

MD5:
faf11d360cdc5ef740bc31b6f8bbca8d

SHA-1:
01a5d8a50c9644ef2bc49805928c6295fbb19ff2

SHA-256:
905b02110c82af6406e35643221f161e71feaed430df778f0f1db170e9053bfd

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/15/2024 1:20:09 AM UTC  (today)

Scan engine
Detection
Engine version

Baidu Antivirus
Trojan.Win32.LogicielsEspions
4.0.3.141112

ESET NOD32
Win32/LogicielsEspions (variant)
8.9534

K7 AntiVirus
Trojan
13.176.11422

File size:
4.7 MB (4,967,136 bytes)

Product version:
2.5.0.2

File type:
Executable application (Win32 EXE)

Language:
French (France)

Common path:
C:\users\{user}\downloads\telechargements\instekm.exe

Digital Signature
Signed by:
Daniel Monteiro

Authority:
COMODO CA Limited

Valid from:
2/24/2013 7:00:00 PM

Valid to:
2/25/2014 6:59:59 PM

Subject:
CN=Daniel Monteiro, O=Daniel Monteiro, STREET="Condominio Costa Nova. Rua Dois, 601", L=Caraguatatuba, S=SP, PostalCode=11677-000, C=BR

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00899BB4D3DAE16CC66EF4EB9C6BBF803E

File PE Metadata
Compilation timestamp:
6/19/1992 6:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:+lSl9OM27H5gByHZy7sYqYTuHwPCKV96W1eyFVXAdANRPC:+0GMGZgQA7sZmuHXUDewBjC

Entry address:
0x1356D4

Entry point:
55, 8B, EC, 83, C4, F0, B8, A4, 51, 53, 00, E8, 58, 17, ED, FF, A1, AC, BB, 53, 00, 8B, 00, E8, 54, 08, F3, FF, 8B, 0D, F8, BC, 53, 00, A1, AC, BB, 53, 00, 8B, 00, 8B, 15, 34, 3E, 53, 00, E8, 54, 08, F3, FF, A1, AC, BB, 53, 00, 8B, 00, E8, C8, 08, F3, FF, E8, A7, EE, EC, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1.2 MB (1,263,616 bytes)

Scan instekm.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.