home

acmepro_nt.sys

STUDIO ONLINE IN ENGLISH AND SPANISH CORPORATION S.A.C.

Publisher:
STUDIO ONLINE IN ENGLISH AND SPANISH CORPORATION S.A.C.  (signed and verified)

MD5:
86447c439f1e374147073c08faa5b7aa

SHA-1:
a718c07b52bb16180b9b2e8593c02d364b73951e

SHA-256:
fa706199ec55f909426dcf164aafbb970a193210d4e86644904a856027f44edd

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/24/2024 9:50:21 AM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
Suspicious_GEN.F47V0820
7.2.284

File size:
23.2 KB (23,744 bytes)

File type:
Driver (Win32 SYS)

Common path:
C:\Program Files\gmr game client setup [v1900]\acme\acmepro_nt.sys

Digital Signature
Signed by:
STUDIO ONLINE IN ENGLISH AND SPANISH CORPORATION S.A.C.

Authority:
DigiCert Inc

Valid from:
2/10/2014 2:00:00 AM

Valid to:
2/18/2015 2:00:00 PM

Subject:
CN=STUDIO ONLINE IN ENGLISH AND SPANISH CORPORATION S.A.C., O=STUDIO ONLINE IN ENGLISH AND SPANISH CORPORATION S.A.C., L=Lima, C=PE

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0C276A4F19A0E30C563EBB5E3E4E8068

File PE Metadata
Compilation timestamp:
5/23/2014 4:43:40 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
10.0

CTPH (ssdeep):
384:qW9YLHfCUzWUKSYx6Vdgc2XZq3d+ZZv/K6jZq35W:qW9sHfaHb6VdUjKgZ

Entry address:
0x5000

Entry point:
56, 57, 53, 55, 83, EC, 2C, 8D, 74, 24, 1C, 68, EC, 24, 40, 00, 56, FF, 15, 08, 21, 40, 00, 8B, 6C, 24, 40, 8D, 44, 24, 18, 50, 33, DB, 53, 53, 6A, 22, 56, 53, 55, FF, 15, 54, 20, 40, 00, 85, C0, 7D, 0A, 83, C4, 2C, 5D, 5B, 5F, 5E, C2, 08, 00, 8D, 7C, 24, 24, 68, C0, 24, 40, 00, 57, FF, 15, 08, 21, 40, 00, 56, 57, FF, 15, 58, 20, 40, 00, 8B, F0, 85, F6, 7D, 0E, FF, 74, 24, 18, FF, 15, FC, 20, 40, 00, 8B, C6, EB, CA, C7, 45, 38, 80, 40, 40, 00, C7, 45, 40, B2, 40, 40, 00, C7, 45, 34, 00, 40, 40, 00, C7, 45...
 
[+]

Code size:
9.5 KB (9,728 bytes)

Scan acmepro_nt.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.