home

ZipCloud.exe

ZipCloud

JDI BACKUP LIMITED

The application ZipCloud.exe by JDI BACKUP LIMITED has been detected as a potentially unwanted program by 2 anti-malware scanners. It runs as a scheduled task under the Windows Task Scheduler named LaunchApp triggered to run every month at a specified time. This file is typically installed with the program ZipCloud by JDI BACKUP LIMITED.
Publisher:
ZipCloud.com  (signed by JDI BACKUP LIMITED)

Product:
ZipCloud

Version:
1.0.0.0

MD5:
950b4606f853fffd42ad44d2af07070e

SHA-1:
28621aa171351aa8d98ea6b79d65d333ecbba556

SHA-256:
f1e3743629e337bff593973ffb3245285ed7e344db40643130b449c7a720a0ef

Scanner detections:
2 / 68

Status:
Potentially unwanted

Analysis date:
4/26/2024 8:36:40 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
Generic
2015.0.3399

Reason Heuristics
PUP.Optional.JDIBACKUPLIMITED.I
14.7.29.9

File size:
1.9 MB (2,018,856 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © ZipCloud.com

Original file name:
ZipCloud.exe

File type:
Executable application (Win64 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\zipcloud\zipcloud.exe

Digital Signature
Signed by:
JDI BACKUP LIMITED

Authority:
VeriSign, Inc.

Valid from:
2/22/2012 7:00:00 PM

Valid to:
2/21/2015 6:59:59 PM

Subject:
CN=JDI BACKUP LIMITED, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=JDI BACKUP LIMITED, L=Havant, S=Hampshire, C=GB

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
35E738AE8513757EEEC7C3A8DC10E470

File PE Metadata
Compilation timestamp:
5/11/2013 12:23:58 PM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
49152:8UBxf0tY7B8JJP8Bu8XPCuo1k6Spqwfjnath7+mrbmgWKVUln0H:8Uxf0S7mJV8Bu8XPCf1k6mln0H

Entry address:
0x1847AE

Entry point:
4D, 5A, 90, 00, 03, 00, 00, 00, 04, 00, 00, 00, FF, FF, 00, 00, B8, 00, 00, 00, 00, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 80, 00, 00, 00, 0E, 1F, BA, 0E, 00, B4, 09, CD, 21, B8, 01, 4C, CD, 21, 54, 68, 69, 73, 20, 70, 72, 6F, 67, 72, 61, 6D, 20, 63, 61, 6E, 6E, 6F, 74, 20, 62, 65, 20, 72, 75, 6E, 20, 69, 6E, 20, 44, 4F, 53, 20, 6D, 6F, 64, 65, 2E, 0D, 0D, 0A, 24, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.4067

Code size:
1.5 MB (1,583,616 bytes)

Scheduled Task
Task name:
LaunchApp

Trigger:
Monthly (Runs monthly on Wednesdays at 7:43 PM)

Action:
zipcloud.exe windowlaunch


The file ZipCloud.exe has been discovered within the following program.

ZipCloud  by JDI BACKUP LIMITED
ZipCloud is part of the Just Develop It! group of Backup brands that offers web hosting and online backup services run by JDI Backup (the parent company to similar brands MyPCBackup, Backup Genie and JustCloud).
www.zipcloud.com
58% remove it
 
Powered by Should I Remove It?

Remove ZipCloud.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.