home

rwscmd.exe

NCP engineering GmbH

Publisher:
NCP engineering GmbH  (signed and verified)

MD5:
1739a68d28ff95c95261e80ba5099a19

SHA-1:
3334e759cd13ff67a905bcb8ccfd7febf053c000

SHA-256:
74583ff627d6d748f69a88b1496c1526c9dd2c65aaa6248cde4f1aecda386701

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/16/2024 6:32:16 PM UTC  (today)

File size:
2 MB (2,069,624 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\ncp\secureclient\rwscmd.exe

Digital Signature
Signed by:
NCP engineering GmbH

Authority:
VeriSign, Inc.

Valid from:
3/10/2010 7:00:00 PM

Valid to:
3/17/2013 7:59:59 PM

Subject:
CN=NCP engineering GmbH, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=NCP engineering GmbH, L=Nuernberg, S=Bavaria, C=DE

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
09FBFDD3C42535FCB523AED327717E24

File PE Metadata
Compilation timestamp:
5/23/2012 8:30:20 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:aXqQzN7oxhKSfE3hUKs4uiH9UITCsUTQy87QSpXn:atdik/jH9USLQSp3

Entry address:
0x197814

Entry point:
55, 8B, EC, B9, 04, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 51, 53, B8, 20, F7, 58, 00, E8, 61, 3B, E7, FF, 33, C0, 55, 68, 8D, 7C, 59, 00, 64, FF, 30, 64, 89, 20, E8, 3E, 4F, E7, FF, 8B, D8, 8B, C3, E8, 65, CB, E7, FF, 3D, FA, 00, 00, 00, 0F, 87, 1C, 04, 00, 00, 6A, 02, B9, A8, 7C, 59, 00, B2, 01, A1, C4, 9C, 4F, 00, E8, 3F, 26, F6, FF, 8B, 15, E8, ED, 59, 00, 89, 02, E8, E2, 6B, F6, FF, B8, 60, 00, 00, 00, E8, C4, C9, E6, FF, 8B, 15, 18, F2, 59, 00, 89, 02, A1, 54, EE, 59, 00, E8, 02, F0, E6, FF, 33, DB...
 
[+]

Entropy:
6.5796

Developed / compiled with:
Microsoft Visual C++

Code size:
1.6 MB (1,665,024 bytes)

Scan rwscmd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.