home

getdrx86.exe

Get Drive info from system.

Hewlett Packard Enterprise Company

Publisher:
Hewlett Packard Netherlands B.V  (signed by Hewlett Packard Enterprise Company)

Product:
Microsoft® Windows® Operating System

Description:
Get Drive info from system.

Version:
5.2.0.8

MD5:
01c3b3eaf32b2f35560f412cbca3eb3a

SHA-1:
b21d65c6d061873da4b759ce551bdd75bc3ac097

SHA-256:
da48ad2eccae20693241c397227ea707ebf1a80e6c5e349e70150305d42233d7

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/27/2024 4:35:39 AM UTC  (today)

File size:
78.9 KB (80,792 bytes)

Product version:
5.2.0.8

Copyright:
© Daniel Grund/Joe Turton © Hewlett Packard

Original file name:
GetDrive.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\getdrx86.exe

Digital Signature
Signed by:
Hewlett Packard Enterprise Company

Authority:
COMODO CA Limited

Valid from:
2/2/2016 1:00:00 AM

Valid to:
2/2/2017 12:59:59 AM

Subject:
CN=Hewlett Packard Enterprise Company, OU=HP Cyber Security, O=Hewlett Packard Enterprise Company, STREET=3000 Hanover Street, L=Palo Alto, S=CA, PostalCode=94304, C=US

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00EE3139861A9EF10FC6E634C6C4627277

File PE Metadata
Compilation timestamp:
3/11/2008 1:49:44 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
9.0

CTPH (ssdeep):
1536:D4CseInLFe8L+/0ks64Q7/5Bls3rir3riVZ:SI7wQL5bsqQ

Entry address:
0x2D05

Entry point:
E8, 89, 2B, 00, 00, E9, A4, FE, FF, FF, B8, 18, F0, 40, 00, C3, A1, E0, 1B, 41, 00, 56, 6A, 14, 5E, 85, C0, 75, 07, B8, 00, 02, 00, 00, EB, 06, 3B, C6, 7D, 07, 8B, C6, A3, E0, 1B, 41, 00, 6A, 04, 50, E8, 32, 2C, 00, 00, 59, 59, A3, C0, 0B, 41, 00, 85, C0, 75, 1E, 6A, 04, 56, 89, 35, E0, 1B, 41, 00, E8, 19, 2C, 00, 00, 59, 59, A3, C0, 0B, 41, 00, 85, C0, 75, 05, 6A, 1A, 58, 5E, C3, 33, D2, B9, 18, F0, 40, 00, EB, 05, A1, C0, 0B, 41, 00, 89, 0C, 02, 83, C1, 20, 83, C2, 04, 81, F9, 98, F2, 40, 00, 7C, EA, 6A...
 
[+]

Code size:
43.5 KB (44,544 bytes)

Scan getdrx86.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.