home

instalar.exe

Instalación de JOTBase Informática

JOTBase

This is a setup program which is used to install the application. The file has been seen being downloaded from webs.ono.com.
Publisher:
JOTBase

Product:
Instalación de JOTBase Informática

Description:
JOTBase Informática

Version:
5.0.0.0

MD5:
69308b9274f5041537ac4e3d6cd2d741

SHA-1:
39c0e9bc9ac593ea201a129fbdb93d33f1ed0e9c

SHA-256:
1e62cda7b83e2aa251eed9c1ca01de2c9be632662a41086bc4755d0876857536

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
8/8/2025 8:25:36 AM UTC  (today)

Scan engine
Detection
Engine version

Vba32 AntiVirus
Trojan.Diztakun
3.12.26.4

Zillya! Antivirus
Trojan.SoftDetails.Win32.5
2.0.0.2541

File size:
4.8 MB (5,035,710 bytes)

Product version:
5.0.0.0

Copyright:
JOTBase

Original file name:
instalar

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\downloads\instalar.exe

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:0Gou/Jtl751ApD6JcqpTSU5XDa6jnc+s36i3YEMH3lhH:rRPe6Jtp+U5XDa6jna3M1hH

Entry address:
0x1AAE20

Entry point:
55, 8B, EC, 83, C4, F0, B8, 90, A8, 5A, 00, E8, 5C, C6, E5, FF, E8, 73, 41, EC, FF, A1, C8, 7A, 5B, 00, 80, 38, 05, 75, 11, A1, 1C, 7D, 5B, 00, 83, 38, 00, 74, 07, E8, F6, 7B, FB, FF, EB, 6C, A1, C8, 7A, 5B, 00, 80, 38, 04, 75, 11, A1, 1C, 7D, 5B, 00, 83, 38, 00, 74, 07, E8, 9F, 80, FB, FF, EB, 51, A1, 8C, 7C, 5B, 00, 8B, 00, E8, 95, 1B, EC, FF, 8B, 0D, E8, 79, 5B, 00, A1, 8C, 7C, 5B, 00, 8B, 00, 8B, 15, F4, B4, 54, 00, E8, 95, 1B, EC, FF, A1, 8C, 7C, 5B, 00, 8B, 00, E8, 09, 1C, EC, FF, A1, C8, 7A, 5B, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1.7 MB (1,744,896 bytes)

The file instalar.exe has been seen being distributed by the following URL.

http://webs.ono.com/.../instalar.exe

Scan instalar.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.