home

DriverToolkit.exe

DriverToolkit

Megaify Software Co.,Ltd.

It runs as a scheduled task under the Windows Task Scheduler triggered to execute each time a user logs in.
Publisher:
Megaify Software Co., Ltd.  (signed by Megaify Software Co.,Ltd.)

Product:
DriverToolkit

Version:
8.5.0.0

MD5:
a21c55ca539351eee736cbdf0a5f1980

SHA-1:
31765f91eb92415936ca088c30e1f8d0ee7a424c

SHA-256:
7edd09b536c8fbb83e3e8a7876af9ce44039056941ec5c5ed2dfc4fb1502c0d4

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/5/2024 3:29:58 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Floxif.H virus
6.3.12010.0

F-Prot
W32/Floxif.B
4.6.5.141

File size:
1.3 MB (1,382,319 bytes)

Product version:
8.5.0.0

Copyright:
Copyright (C) 2006-2015 Megaify Software.

Original file name:
DriverToolkit.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\drivertoolkit\drivertoolkit.exe

Digital Signature
Signed by:
Megaify Software Co.,Ltd.

Authority:
Symantec Corporation

Valid from:
12/14/2014 8:00:00 AM

Valid to:
3/15/2018 7:59:59 AM

Subject:
CN="Megaify Software Co.,Ltd.", O="Megaify Software Co.,Ltd.", L=长沙, S=湖南, C=CN

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
0AE57DAB35030A3A9774D123477EA9D7

File PE Metadata
Compilation timestamp:
7/1/2015 12:51:55 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

Entry address:
0x6421F

Entry point:
E9, 17, 74, FF, FF, E9, 6B, FD, FF, FF, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 68, A1, 48, 00, 89, 0D, 64, A1, 48, 00, 89, 15, 60, A1, 48, 00, 89, 1D, 5C, A1, 48, 00, 89, 35, 58, A1, 48, 00, 89, 3D, 54, A1, 48, 00, 66, 8C, 15, 80, A1, 48, 00, 66, 8C, 0D, 74, A1, 48, 00, 66, 8C, 1D, 50, A1, 48, 00, 66, 8C, 05, 4C, A1, 48, 00, 66, 8C, 25, 48, A1, 48, 00, 66, 8C, 2D, 44, A1, 48, 00, 9C, 8F, 05, 78, A1, 48, 00, 8B, 45, 00, A3, 6C, A1, 48, 00, 8B, 45, 04, A3, 70, A1, 48, 00, 8D, 45, 08, A3, 7C, A1, 48...
 
[+]

Entropy:
7.1683

Packer / compiler:
tElock 0.99 - 1.0 private

Code size:
443 KB (453,632 bytes)

Scheduled Task
Task name:
DriverToolkit Autorun

Trigger:
Logon (Runs on logon)

Description:
Startup DriverToolkit Automatically.


Scan DriverToolkit.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.