home

ZDBackup.exe

Z-DBackup

Andreas Baumann

Publisher:
IMU-BerliNet  (signed by Andreas Baumann)

Product:
Z-DBackup

Description:
Z-DBackup Datensicherung

Version:
6.02.0020

MD5:
9caf2062f52819ab84c5220008fa672e

SHA-1:
95c33300357d6d2093a1c9c8f1eab1f72612338e

SHA-256:
9a371073f62895b1b793486dd19ca57c9b3ea50ba994c6fedf6af11a926c0022

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/24/2024 8:30:11 AM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
Suspicious_GEN.F47V0616
7.2.6

File size:
2.5 MB (2,625,568 bytes)

Product version:
6.02.0020

Copyright:
© Andreas Baumann 2001 - 2015

Original file name:
ZDBackup.exe

File type:
Executable application (Win32 EXE)

Language:
German (Germany)

Common path:
C:\Program Files\z-dbackup\zdbackup.exe

Digital Signature
Signed by:
Andreas Baumann

Authority:
Thawte, Inc.

Valid from:
12/20/2013 1:00:00 AM

Valid to:
2/19/2016 12:59:59 AM

Subject:
CN=Andreas Baumann, OU=SECURE APPLICATION DEVELOPMENT, O=Andreas Baumann, L=Berlin, S=Berlin, C=DE

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
152279739F9E5ACBD00F9AD3FDA4F733

File PE Metadata
Compilation timestamp:
8/18/2015 3:57:10 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:GRUp+2zw3INzobY42Q9hIJpAgoWF4N3ZxRhy7RsS:GRU9w3kzobmQfoRFWZxRk7iS

Entry address:
0x31B24

Entry point:
B8, 58, 1C, 0C, 01, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 6D, BD, 5B, 4D, 3C, 92, 5F, 70, DE, 49, D1, B1, 91, AB, E0, 89, A7, ED, 73, DF, 82, 5B, B0, C9, DC, D0, A2, 4E, 92, B4, 75, 32, 18, 29, 45, C4, 87, 78, D5, CF, 0A, 65, 7E, A6, 02, 6D, 66, 7B, 2D, 81, BE, 2B, 58, 41, E6, 45, 0E, AF, 4B, E1, 03, E9, 78, 58, A2, B6, 60, 57, D4, 2D, 2B, 9F, 06, 6C, 62, E4, 01, DD, D9, CB, 13, CF, 13, B6, 4E, E3, 0D, BF, 69, 62, 5D, A1, F9...
 
[+]

Packer / compiler:
PECompact v2

Code size:
10.3 MB (10,805,248 bytes)

Scan ZDBackup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.