Gridinsoft Logo

The dcbcfgx86.dll (broscfg) File Analysis

Updated 28 days ago
Checked by Malaware Check
dcbcfgx86.dll

Technical Analysis

File Name dcbcfgx86.dll
File Type
Win32 DLL
Magic Bytes PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
SSDEEP Hash
49152:JqhcOxKvi1ZSPCC96g1b0LYOAfvpL3XZEzkuJfmMgPBt8ar/xS:0hc6KK1kPC9g14kOeJEYgfJg5eaU
Scanner Version 1.0.216.174
Database Version 2025-05-10 05:00:18 UTC
⚠

Suspicious File Detected

Detected by 11 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
15%
Detection Rate
2,618,184
File Size (bytes)
11/72
Engines Detected
2025-05-10
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
903cb48dc6f3ea38e748af4f9f62a160
SHA1
1b4ba9fa95a0bf9dd43507ead014cde4ba480452
SHA256
32707bb1340d9d565169eb6087904b1c3e81bb8889bc6775598690ca1647795a
SHA512
48d23af16370b7970c3a8c4a138a2524c3761e7a7ecacc75dae47da0eaf85601c4ba742b90f7ea6a7fcd07e6e587b8c2ffb8dad1522885809d9b6df5020d7b5e
ImpHash
67decdc5024f6391c9b196cee3727113

Security Engines with Detections (11 of 72)

Cylance
Unsafe Malicious
Alibaba
AdWare:Win32/BroExt.ba0032c4 Malicious
Kaspersky
not-a-virus:AdWare.Win32.BroExt.d Malicious
McAfeeD
ti!32707BB1340D Malicious
Sophos
BroExt (PUA) Malicious
Jiangmin
AdWare.BroExt.u Malicious
Webroot
W32.Malware.gen Malicious
Rising
Adware.StartPage!1.DC70 (CLASSIC) Malicious
huorong
Trojan/HiJack.k Malicious
MaxSecure
Trojan.Malware.318522507.susgen Malicious
DeepInstinct
MALICIOUS Malicious
61 engines reported no threats - Only engines with detections are shown above for clarity

PE Analysis

Basic Information

▾
Image Base 0x10000000
Entry Point 0x10116bf7
Compilation Time 2024-01-20 04:55:13
Checksum 0x00286023 (Actual: 0x00286023)
OS Version 5.1
PEiD Signatures PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
PDB Path E:\Data\Sysceo\AD\įž“å­˜C++\Browser_noime\DLL_Release\broscfg.pdb
Digital Signature OK
Imports 7 libraries
KERNEL32, USER32, ADVAPI32, SHELL32, ole32, SHLWAPI, NETAPI32
Exports 2 functions
Resources 14 Resources
Sections 7 Sections

Version Information

▾
CompanyName broscfg
FileDescription broscfg
FileVersion 2.0.0.28
InternalName broscfg
LegalCopyright Copyright (C) 2022
OriginalFilename broscfg
ProductName broscfg
ProductVersion 2.0.0.28
Translation 0x0804 0x04b0

PE Sections

▾
Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 1,312,113 bytes 1,312,256 bytes 6.73 (Compressed) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ CDE86E31F4B621763FE4710770EBE900
.rdata 0x00142000 270,052 bytes 270,336 bytes 5.81 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 3898322BFFE269A36E3BCD9407EC4634
.data 0x00184000 38,288 bytes 16,896 bytes 4.77 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 3A9B85A1AA3E41E55AF90928A8C87F56
.gfids 0x0018e000 884 bytes 1,024 bytes 3.62 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 04947DB7E7E0E3F752272905F0781158
.tls 0x0018f000 9 bytes 512 bytes 0.02 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 1F354D76203061BFDD5A53DAE48D5435
.rsrc 0x00190000 954,768 bytes 954,880 bytes 8.00 (Packed/Encrypted) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 62608CC06D63D57763A6CA16299F5627
.reloc 0x0027a000 49,276 bytes 49,664 bytes 6.59 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 248C425FD9EC51404C920C2151843ECE
Entropy Analysis Alert

1 section(s) with high entropy (â‰Ĩ7.5) detected - possible packing/encryption

2 section(s) with elevated entropy (â‰Ĩ6.5) - possible compression

Resource Analysis

▾
Total Resources: 14 (953,938 bytes)
Resource Type Count Total Size Percentage
DATA 12 952,886 bytes
99.9%
RT_VERSION 1 660 bytes
0.1%
RT_MANIFEST 1 392 bytes
0%

Certificate Chain Analysis

▾
Certificate Information
Product broscfg
Description broscfg
File Version 2.0.0.28
Original Name broscfg
Signing Date 04:55 AM 01/20/2024 (504 days ago)
Verification Status Signed
Signers Jiangmen Maidi E-commerce Co., Ltd.; WoTrus Code Signing 2021 CA; Certum Trusted Network CA 2
Counter Signers DigiCert Timestamp 2023; DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA; DigiCert Trusted Root G4; DigiCert
Internal Name broscfg
Copyright Copyright (C) 2022
Certificate Chain Summary
Certum Trusted Network CA 2 #1 Primary
Validity Period: 2011-10-06 08:39:56 → 2046-10-06 08:39:56
Signature Algorithm: sha512RSA
Serial Number: 21 D6 D0 4A 4F 25 0F C9 32 37 FC AA 5E 12 8D E9
Jiangmen Maidi E-commerce Co., Ltd. #2 Chain
Validity Period: 2022-03-09 11:14:55 → 2025-03-08 11:14:54
Signature Algorithm: sha256RSA
Serial Number: 05 7C 38 8E 8E C7 8F 86 4C C0 E9 15 1B 27 5C 29
WoTrus Code Signing 2021 CA #3 Chain
Validity Period: 2021-05-26 06:46:35 → 2027-05-18 06:46:35
Signature Algorithm: sha384RSA
Serial Number: 38 9C D2 9D 8F DB C7 39 F5 49 33 BE CE 98 93 B4
DigiCert Timestamp 2023 #4 Chain
Validity Period: 2023-07-14 00:00:00 → 2034-10-13 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 05 44 AF F3 94 9D 08 39 A6 BF DB 3F 5F E5 61 16
DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA #5 Chain
Validity Period: 2022-03-23 00:00:00 → 2037-03-22 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 07 36 37 B7 24 54 7C D8 47 AC FD 28 66 2A 5E 5B
DigiCert Trusted Root G4 #6 Chain
Validity Period: 2022-08-01 00:00:00 → 2031-11-09 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 0E 9B 18 8E F9 D0 2D E7 EF DB 50 E2 08 40 18 5A

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

OK

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
11 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware