home

ZINIT32.exe

AKS

AGENDA Informationssysteme GmbH & Co. KG

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘zinit32’.
Publisher:
AGENDA Informationssysteme GmbH & Co. KG  (signed and verified)

Product:
AKS

Description:
Initialisierung

Version:
14.0.3.58988

MD5:
c7dda2007e9b2c511464a5f5ed547d71

SHA-1:
9ea00662f5e4feacc2ad057c98d9cd99d3810a77

SHA-256:
00f8ff621792b6c1c457c008dc7d7147491995f21d56c3f91516f544bf175dcd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 7:32:00 AM UTC  (today)

File size:
14.8 MB (15,491,168 bytes)

Product version:
14.0.3.58988

Copyright:
Copyright © 2008 Agenda Informationssysteme GmbH & Co. KG

Trademarks:
Agenda

Original file name:
ZINIT32.exe

File type:
Executable application (Win32 EXE)

Language:
German (Germany)

Common path:
C:\windows\zinit32.exe

Digital Signature
Signed by:
AGENDA Informationssysteme GmbH & Co. KG

Authority:
Thawte, Inc.

Valid from:
5/22/2012 2:00:00 AM

Valid to:
7/24/2014 1:59:59 AM

Subject:
CN=AGENDA Informationssysteme GmbH & Co. KG, OU=Technik, O=AGENDA Informationssysteme GmbH & Co. KG, L=Rosenheim, S=Bayern, C=DE

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
236DF731C2BF52345C1C84B287F5F6EA

File PE Metadata
Compilation timestamp:
6/12/2013 9:19:14 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
393216:ew2CdGZnTCijKgvRVv1wY0e36yw68bUCriKIBdbPZmv:eEd2LFRehiKIY

Entry address:
0xB707F4

Entry point:
55, 8B, EC, 83, C4, F0, B8, 2C, 34, F5, 00, E8, 04, C5, 49, FF, A1, 24, 28, FB, 00, 8B, 00, E8, A0, 28, 5D, FF, A1, 24, 28, FB, 00, 8B, 00, C6, 40, 5B, 00, E8, 34, 25, FE, FF, 6A, 01, 8B, 0D, 24, 28, FB, 00, 8B, 09, B2, 01, A1, 5C, B2, 9E, 00, E8, F2, AC, A7, FF, 8B, 15, 38, 0A, FB, 00, 89, 02, E8, 45, 26, FE, FF, A1, 24, 28, FB, 00, 8B, 00, E8, C9, 29, 5D, FF, 6A, 64, E8, EE, 9B, 4B, FF, E8, 01, 76, 49, FF, 90, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
11.4 MB (11,987,968 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
zinit32

Command:
C:\windows\zinit32.exe


Scan ZINIT32.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.