home

bcswap.sys

Jetico BestCrypt Security System for Windows NT/2000/XP

Jetico, Inc.

Publisher:
Jetico, Inc.  (signed and verified)

Product:
Jetico(R) BestCrypt(TM) Security System for Windows NT/2000/XP(TM)

Description:
BCSwap Swap File Encrypting Driver

Version:
2.16 built by: WinDDK

MD5:
5cabea619e9983e1e4f440e2c7da4173

SHA-1:
512ff1b0ecf0ee1d8598cbc20d0749b840622f9c

SHA-256:
66c15b7eb7290dee4027a40f99689438ac25d911e4132945f6d28f6088ebf3c8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 11:28:37 PM UTC  (a few moments ago)

File size:
138 KB (141,288 bytes)

Product version:
2.16

Copyright:
Copyright (C) Jetico, Inc. 1993-2004

Original file name:
bcswap.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\driversxp_ia64\bcswap.sys

Digital Signature
Signed by:
Jetico, Inc.

Authority:
GeoTrust Inc

Valid from:
9/5/2006 6:35:29 AM

Valid to:
9/5/2009 6:35:29 AM

Subject:
CN="Jetico, Inc.", OU=GeoTrust Code Signing, OU=Sales, O="Jetico, Inc.", L=Espoo, S=Finland, C=FI

Issuer:
CN=GeoTrust TrustCenter CodeSigning CA I, O=GeoTrust Inc, OU=GeoTrust TrustCenter CodeSigning CA, C=US

Serial number:
71DA000100208F6CD781F7422B04

File PE Metadata
Compilation timestamp:
9/13/2007 11:46:40 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
3072:+Qw4J6cf//EFcyQKtu9v9OYxnXtbbrJCKszW1jjcLf1NcmqS9tSykHyMqqDLZ5h:+da//EFcyQKtu9v9OYxnXhJsqd4f1eDj

Entry address:
0x16210

Entry point:
00, A0, 03, 00, 00, 00, 00, 00, 00, A0, 22, 00, 00, 00, 00, 00, 20, 53, 02, 00, 00, 00, 00, 00, 00, A0, 22, 00, 00, 00, 00, 00, 52, 53, 44, 53, 77, 4F, A1, 46, 88, 1B, 90, 4E, A6, 76, 28, 6F, E0, E4, D4, DA, 01, 00, 00, 00, 64, 3A, 5C, 75, 73, 65, 72, 73, 5C, 73, 65, 72, 5C, 76, 65, 72, 73, 69, 6F, 6E, 38, 5C, 62, 65, 73, 74, 63, 72, 79, 70, 74, 5C, 62, 63, 73, 77, 61, 70, 5C, 62, 63, 73, 77, 61, 70, 6E, 74, 5C, 62, 69, 6E, 5C, 69, 61, 36, 34, 5C, 42, 43, 53, 77, 61, 70, 2E, 70, 64, 62, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.5436

Code size:
81 KB (82,944 bytes)

Scan bcswap.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.