home

~DF2F9E.tmp

WinRing0

Noriyuki MIYAZAKI

Publisher:
OpenLibSys.org  (signed by Noriyuki MIYAZAKI)

Product:
WinRing0

Version:
1.2.0.5

MD5:
5584d895128279911fb675423e53954c

SHA-1:
165248cc700df0a909e0e95e8986a0e96d0378a0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/2/2024 3:21:23 PM UTC  (today)

File size:
16 KB (16,384 bytes)

Product version:
1.2.0.5

Copyright:
Copyright (C) 2007-2008 OpenLibSys.org. All rights reserved.

Original file name:
WinRing0.sys

Common path:
C:\Documents and Settings\{user}\Local settings\temp\~df2f9e.tmp

Digital Signature
Signed by:
Noriyuki MIYAZAKI

Authority:
GlobalSign nv-sa

Valid from:
9/24/2007 12:50:55 PM

Valid to:
9/24/2008 12:50:55 PM

Subject:
E=hiyohiyo@crystalmark.info, CN=Noriyuki MIYAZAKI, C=JP

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
01000000000115372421A8

File PE Metadata
Compilation timestamp:
7/26/2008 3:25:10 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
384:zkg+wW5QDV08teHn+EgTWGYOf2OJ06dUb+m2FDA:JDV4+ECtfSJim2FD

Entry address:
0x1185

Entry point:
8B, FF, 55, 8B, EC, A1, 00, 11, 01, 00, 85, C0, B9, 4E, E6, 40, BB, 74, 04, 3B, C1, 75, 1E, 8B, 15, 2C, 0F, 01, 00, B8, 00, 11, 01, 00, C1, E8, 08, 33, 02, A3, 00, 11, 01, 00, 75, 07, 8B, C1, A3, 00, 11, 01, 00, F7, D0, A3, 04, 11, 01, 00, 5D, E9, CF, F8, FF, FF, CC, 28, 12, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 70, 13, 00, 00, 24, 0F, 00, 00, 04, 12, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 22, 14, 00, 00, 00, 0F, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, F2...
 
[+]

Entropy:
6.4556

Code size:
3.4 KB (3,456 bytes)

Scan ~DF2F9E.tmp - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.