home

cssc.exe

NetZone Info-Tech Co., Ltd., Shanghai

The application cssc.exe by NetZone Info-Tech Co.,, Shanghai has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
NetZone Info-Tech Co., Ltd., Shanghai  (signed and verified)

MD5:
065756cb1b014342b44f827d70c92c6c

SHA-1:
305093f07c2ada10a6355123a852d18563d21369

SHA-256:
212f6ad0ba4515b2e760ac568405cb59819c45abf54a775e27e5904a4ee6b487

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/27/2024 5:44:01 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.NetZoneI
17.1.12.3

File size:
2.7 MB (2,818,384 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\Program Files\csscli\cssc.exe

Digital Signature
Signed by:
NetZone Info-Tech Co., Ltd., Shanghai

Authority:
VeriSign, Inc.

Valid from:
8/28/2013 8:00:00 AM

Valid to:
9/28/2014 7:59:59 AM

Subject:
CN="NetZone Info-Tech Co., Ltd., Shanghai", OU=研发部, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="NetZone Info-Tech Co., Ltd., Shanghai", L=shanghai, S=shanghai, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0F6E9CFE055D34BDB1E940226A57A124

File PE Metadata
OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
2.62

Entry address:
0x14C00

Entry point:
48, 83, EC, 28, C6, 05, D5, C5, 1C, 00, 00, E8, C0, EE, FF, FF, 48, 83, C4, 28, C3, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 55, 48, 89, E5, 48, 83, EC, 10, 65, 48, A1, 08, 00, 00, 00, 00, 00, 00, 00, 65, 48, 2B, 04, 25, 10, 00, 00, 00, C9, C3, 00, 00, 48, 83, EC, 28, 48, 89, 5C, 24, 20, 48, B9, 00, 00, 00, 01, 00, 00, 00, 00, E8, C8, FF, FF, FF, 48, 89, C3, 48, 8B, 05, BE, D3, 25, 00, 48, 85, C0, 74, 0B, 8B, 0D, 83, E0, 25, 00, 48, FF, D0, EB, 07, 48, 8D, 05, 7F, E0, 25, 00, 48, 89, 18, 48, 8B, 05, 9D...
 
[+]

Entropy:
5.8142

Code size:
1.9 MB (1,959,264 bytes)

Windows Firewall Allowed Program
Name:
cssc


Remove cssc.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.