home

ezcddax.exe

Easy CD-DA Extractor

NGO

The application ezcddax.exe by NGO has been detected as a potentially unwanted program by 7 anti-malware scanners.
Publisher:
Poikosoft  (signed by NGO)

Product:
Easy CD-DA Extractor

Version:
2010.0.0.2

MD5:
ef54554cd4d85deef71dbf27f5f6aa5d

SHA-1:
dc7a96d5203f0b05d8aa57c552e81506a5a854df

SHA-256:
006d610c49ed7eb63cdc37afdde1f88f3314a8066b198fa153016c153d6f7dc2

Scanner detections:
7 / 68

Status:
Potentially unwanted

Analysis date:
4/25/2024 1:04:23 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Packed/ZProtect
7.1.1

AVG
Fat-Obfuscated
2016.0.2940

Fortinet FortiGate
W32/Redosdru.ID!tr
10/30/2015

F-Secure
Packed:W32/PeCan.A
11.2015-30-10_6

K7 AntiVirus
Trojan
13.202.15432

Norman
Redosdru.LS
11.20151030

VIPRE Antivirus
Trojan-Dropper.Win32.Resdro.b
38924

File size:
3.5 MB (3,620,608 bytes)

Product version:
2010.0.0.2

Copyright:
Copyright 1998 - 2010 Jukka Poikolainen & Poikosoft

Trademarks:
Poikosoft and Easy CD-DA Extractor are registered trademarks of Poikosoft

Original file name:
ezcddax.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\easy cd-da extractor 2010\ezcddax.exe

Digital Signature
Signed by:
NGO

Authority:
NGO

Valid from:
2/16/2010 6:01:56 PM

Valid to:
1/1/2040 12:59:59 AM

Subject:
CN=NGO

Issuer:
CN=NGO

Serial number:
07BB35BC5AFF14BF428073A13E5B77ED

File PE Metadata
Compilation timestamp:
9/10/1987 8:27:18 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
83.82

CTPH (ssdeep):
49152:xjhaa5f5cKTP8Xe0q2ZjGY5JJX8EYMu3f5wGsWpI:pVmBliYWEBuBDsgI

Entry address:
0x8363BD

Entry point:
E8, 01, 00, 00, 00, 2A, 87, 34, 24, 8D, B6, 50, 00, 00, 00, 87, 34, 24, E9, 3E, 00, 00, 00, BE, 8B, 77, 0F, 86, 87, 02, 00, 00, E9, 1C, 03, 00, 00, 03, D0, E9, BE, 06, 00, 00, FE, E6, 42, 8B, 75, 08, E9, F1, FC, FF, FF, 10, 11, 48, 61, 5E, E9, AE, 05, 00, 00, 68, 03, F7, E9, 90, 00, 00, 00, 47, 2D, 3D, F4, 57, E9, 76, FC, FF, FF, B8, 56, 60, E9, C5, 01, 00, 00, 68, 65, 32, 39, 79, 18, E9, F3, 03, 00, 00, EE, E6, 07, 83, C3, 08, E9, DA, 04, 00, 00, F7, 4E, 60, E9, 44, 03, 00, 00, DA, BF, 42, E9, C1, 04, 00...
 
[+]

Code size:
708 KB (724,992 bytes)

Autoplay Handler
Display name:
EZCDDAXAutoPlayAudioCD


Remove ezcddax.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.