home

wayprotect64.sys

Btra Away Ltda - ME

It runs as a Windows 64-bit kernel mode device driver named “WayProtect”.
Publisher:
Btra Away Ltda - ME  (signed and verified)

MD5:
b20cfc4a444672ddb6513856efdfe34d

SHA-1:
ee3ed4ee82e7e8bab6baade4c235a1c631b1e9fb

SHA-256:
fd8d7f701dc135ad57b9a8738f6f70fc660230e8cc0b62f7deb9b498d5573e90

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 7:42:55 AM UTC  (today)

File size:
974.6 KB (997,960 bytes)

File type:
Driver (Win64 SYS)

Digital Signature
Signed by:
Btra Away Ltda - ME

Authority:
VeriSign, Inc.

Valid from:
3/24/2016 9:00:00 PM

Valid to:
10/16/2016 9:59:59 PM

Subject:
CN=Btra Away Ltda - ME, O=Btra Away Ltda - ME, L=Maraba, S=Para, C=BR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7174B1A630A1882CF557D67F83FB7545

File PE Metadata
Compilation timestamp:
9/21/2016 3:18:07 PM

OS version:
6.3

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
12.0

CTPH (ssdeep):
24576:mpwAWjE3bsZSw+ay9FT6y6xvso2AxP3JVSE6DD8pKQMx:m+oVt1gvsvAxP3JVSypox

Entry address:
0x20C665

Entry point:
68, 35, 0D, A4, 5A, E8, 00, 7B, 01, 00, 00, 00, 00, 49, 6F, 46, 72, 65, 65, 4D, 64, 6C, 00, 80, 22, 81, 5D, B6, A4, 7F, AB, 73, 29, 7B, 7E, AB, 7B, 9B, 99, 7E, AB, 71, 10, 52, 7F, AB, 73, 1E, CC, 7F, AB, 77, F2, 60, 7E, AB, 77, 63, 41, 7F, AB, 77, A5, 46, 7E, 55, 77, 82, 57, DA, 40, 8A, A2, B0, 8F, 54, 80, 25, A7, 8F, 54, 88, C8, DA, 8F, 54, 8C, E7, B5, 8E, 54, 84, 3D, 2F, 8E, 54, 8E, FE, AC, 8F, 54, 8C, 70, A2, 8F, 54, 88, 84, 26, 8E, 54, 88, E4, 47, 8F, 54, 88, 23, 80, 89, AA, 52, 76, CD, A0, BF, DE, FF...
 
[+]

Code size:
27 KB (27,648 bytes)

Driver
Display name:
WayProtect

Type:
Kernel device driver (KernelDriver)


Scan wayprotect64.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.