home

administrativo.exe

This is a setup program which is used to install the application.
Version:
1.0.0.0

MD5:
4a7003cd0ff6efe0970e0be75bf17952

SHA-1:
3db639181110a4aa71f63305d6dc26788a833132

SHA-256:
b1701b5d706a26debb4b21e3eeedabb82b8b3984e34f70b9914680b08b3ade1a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
6/20/2025 10:51:38 PM UTC  (today)

File size:
3.7 MB (3,832,320 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\administrativo.exe

File PE Metadata
Compilation timestamp:
1/13/2016 2:41:08 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:coV105PMckFu2Z+SetXd9irGO3LZNEstiMHjfC0UwA:cQ0/s3LZTg+i

Entry address:
0x316A14

Entry point:
55, 8B, EC, 83, C4, F0, B8, BC, CF, 70, 00, E8, 6C, 8C, CF, FF, A1, CC, E0, 71, 00, 8B, 00, E8, 28, 57, ED, FF, 8B, 0D, 60, E4, 71, 00, A1, CC, E0, 71, 00, 8B, 00, 8B, 15, B0, 4E, 6F, 00, E8, 28, 57, ED, FF, E8, 43, F4, FD, FF, 84, C0, 74, 3C, 8B, 0D, DC, E0, 71, 00, A1, CC, E0, 71, 00, 8B, 00, 8B, 15, 04, 9F, 70, 00, E8, 07, 57, ED, FF, 8B, 0D, 78, E3, 71, 00, A1, CC, E0, 71, 00, 8B, 00, 8B, 15, 28, AC, 70, 00, E8, EF, 56, ED, FF, A1, CC, E0, 71, 00, 8B, 00, E8, 3F, 58, ED, FF, E8, EE, 37, CF, FF, 8B, C0...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
3.1 MB (3,234,816 bytes)

The file administrativo.exe has been seen being distributed by the following URL.

ftp://ftp.m3medios.com/files/.../Administrativo.exe

Scan administrativo.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.