home

pro64.sys

Suxing Network Technology Co.,Ltd.

It runs as a Windows 64-bit kernel mode device driver named “hx_pro100”.
Publisher:
Suxing Network Technology Co.,Ltd.  (signed and verified)

MD5:
88f092bab62647e9e40af54bdc385133

SHA-1:
566b81382639f72deb52e9ee36f70f82ea06c11d

SHA-256:
f134036e4f6e153a57a1492fd584fd46c628373d5d635200edbd4cfe72c8aad7

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
2/25/2025 6:38:43 AM UTC  (today)

File size:
17.4 KB (17,800 bytes)

File type:
Driver (Win64 SYS)

Digital Signature
Signed by:
Suxing Network Technology Co.,Ltd.

Authority:
WoSign CA Limited

Valid from:
2/1/2016 3:41:13 PM

Valid to:
2/1/2017 3:41:13 PM

Subject:
CN="Suxing Network Technology Co.,Ltd.", O="Suxing Network Technology Co.,Ltd.", L=Zhengzhou, S=Henan, C=CN

Issuer:
CN=WoSign Class 3 Code Signing CA, O=WoSign CA Limited, C=CN

Serial number:
6A044BB2ADED89657633E84E15E24355

File PE Metadata
Compilation timestamp:
7/27/2015 4:58:47 PM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
384:vDNO8FazDZ0m38fo3oivQVOnXNh/bqxlM5:b8hZ3Jnbqo5

Entry address:
0x7000

Entry point:
48, 89, 54, 24, 10, 48, 89, 4C, 24, 08, 48, 83, EC, 78, 66, C7, 44, 24, 58, 2A, 00, 66, C7, 44, 24, 5A, 2C, 00, 48, 8D, 05, E5, C1, FF, FF, 48, 89, 44, 24, 60, 66, C7, 44, 24, 48, 2C, 00, 66, C7, 44, 24, 4A, 2E, 00, 48, 8D, 05, FB, C1, FF, FF, 48, 89, 44, 24, 50, 48, C7, 44, 24, 68, 00, 00, 00, 00, 48, 8D, 44, 24, 68, 48, 89, 44, 24, 20, 45, 33, C9, 4C, 8D, 44, 24, 48, 48, 8D, 54, 24, 58, 48, 8B, 8C, 24, 80, 00, 00, 00, E8, 91, 9F, FF, FF, 85, C0, 74, 0A, B8, 01, 00, 00, C0, E9, F1, 00, 00, 00, 48, 8B, 44...
 
[+]

Entropy:
6.6352

Code size:
7 KB (7,168 bytes)

Driver
Display name:
hx_pro100

Type:
Kernel device driver (KernelDriver)


Scan pro64.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.