home

fixbcd.exe

fixbcd

NetZone Info-Tech Co., Ltd., Shanghai

The application fixbcd.exe by NetZone Info-Tech Co.,, Shanghai has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
NETZONE Corp.  (signed by NetZone Info-Tech Co., Ltd., Shanghai)

Product:
fixbcd

Version:
8.2.0.3120

MD5:
9ac4ee19b012d8c5b443bb0345d0720b

SHA-1:
00a9b6a5fffe15d5879b741a0ddc0320e31f6f89

SHA-256:
4958460bff625287f23885b5c6098b8fb3434c3d19c2f1d7cfdbea697b9aa1aa

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
5/5/2024 4:13:48 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.NetZoneI
17.2.3.6

File size:
801.2 KB (820,384 bytes)

Product version:
8.2.0.3120

Copyright:
Copyright (C) NETZONE Corp. 2008-2009

Original file name:
fixbcd

File type:
Executable application (Win32 EXE)

Common path:
C:\windows\syswow64\fixbcd.exe

Digital Signature
Signed by:
NetZone Info-Tech Co., Ltd., Shanghai

Authority:
VeriSign, Inc.

Valid from:
10/19/2015 8:00:00 AM

Valid to:
11/18/2016 7:59:59 AM

Subject:
CN="NetZone Info-Tech Co., Ltd., Shanghai", OU=研发部, O="NetZone Info-Tech Co., Ltd., Shanghai", L=Shanghai, S=Shanghai, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
53E901A1F94C2C43445BF53135DE579A

File PE Metadata
Compilation timestamp:
6/20/1992 6:22:17 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x1BF239

Entry point:
E9, 91, 55, 00, 00, 31, D2, 8D, 87, EF, 74, E9, 7B, 3F, 66, 0F, A4, F8, 01, 66, 0F, C8, 89, D0, 04, 16, 66, 85, F0, 24, 0D, 60, 83, C7, 01, 34, 0A, 88, 4C, 24, 0C, 8A, 07, FF, 34, 24, F5, 84, C0, E8, 5C, E8, F4, FF, 8D, 64, 24, 44, E8, 05, 60, 00, 00, 9C, 9C, FF, 74, 24, 04, 89, F4, 68, D6, 9A, DE, AE, 68, D0, 7F, 8F, AC, 8D, 64, 24, 08, E9, 0B, F2, F4, FF, 00, 00, 56, 61, 72, 69, 61, 6E, 74, 43, 6F, 70, 79, 00, 00, 00, 4D, 6F, 76, 65, 54, 6F, 45, 78, 00, 01, D1, F8, 89, 4D, F0, 0F, BE, CB, 8B, 4D, 0C, 66...
 
[+]

Entropy:
7.9640

Packer / compiler:
Xtreme-Protector v1.05

Code size:
468 KB (479,232 bytes)

Remove fixbcd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.