home

360spoem.sys

Grupo Xango Tecnologia S/A

It runs as a Windows 64-bit kernel mode device driver named “360SpOEM”.
Publisher:
360安全中心  (signed by Grupo Xango Tecnologia S/A)

Product:
360安全中心

Description:
360安全卫士 - SelfProtection

Version:
1, 0, 0, 1054

MD5:
856806fc4a05faf93b817712ea9a35c9

SHA-1:
aad4c6b64d34c2faa8e12244cc5af9200ba309b7

SHA-256:
7fd11096140f279b4a4c26d86e865ee31c5d37472c71d1a87b2889f2ce6dfb79

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 6:56:38 AM UTC  (today)

File size:
62.5 KB (64,048 bytes)

Product version:
1, 0, 0, 1054

Copyright:
版权所有 (C) 2006-2010 360安全中心

Original file name:
SelfProtection.sys

File type:
Driver (Win64 SYS)

Language:
Chinese

Common path:
C:\Windows\System32\drivers\360spoem.sys

Digital Signature
Signed by:
Grupo Xango Tecnologia S/A

Authority:
GlobalSign nv-sa

Valid from:
7/30/2012 6:18:00 PM

Valid to:
5/2/2013 5:37:48 PM

Subject:
CN=Grupo Xango Tecnologia S/A, OU=PSafe, O=Grupo Xango Tecnologia S/A, L=Rio de Janeiro, S=RJ, C=BR

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11218C18F955B2B586579276E3D94B0D68F9

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
768:55Y5tgMJJ0S4xIMBzjsjitA+wTr7QRWfIfn7xtx7wQik4r3JK9fO8UZfIILv5q:mgMJqS4hAwAr7xfmlwq489m8UZTg

Entry point:
A1, 04, AD, 01, 00, 85, C0, B9, 4E, E6, 40, BB, 74, 04, 3B, C1, 75, 19, A1, D0, A4, 01, 00, 8B, 00, 35, 04, AD, 01, 00, A3, 04, AD, 01, 00, 75, 06, 89, 0D, 04, AD, 01, 00, E9, EB, D7, FF, FF, CC, CC, CC, 04, C8, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 76, D0, 00, 00, 90, A3, 00, 00, F4, C7, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, C0, D0, 00, 00, 80, A3, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 98, D0, 00, 00, 84, D0, 00, 00, AC, D0, 00, 00, 00, 00, 00, 00, AE...
 
[+]

Driver
Display name:
360SpOEM

Type:
Kernel device driver (KernelDriver)

Group:
Base


Scan 360spoem.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.