home

ahkfwflt.sys

AhkFwFlt

Ahkun CO., LTD.

It runs as a Windows kernel mode device driver named “AhkFwFlt”.
Publisher:
Ahkun  (signed by Ahkun CO., LTD.)

Product:
AhkFwFlt

Version:
1.0.0.5 built by: WinDDK

MD5:
e3499ee404c5e30b7c51d354644a3001

SHA-1:
453fc9271fb7e790a94e2600403c42f04566dfec

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
7/13/2025 8:42:18 AM UTC  (today)

File size:
35 KB (35,880 bytes)

Product version:
1.0.0.5

Copyright:
Ahkun

Original file name:
AhkFwFlt..sys

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\ahkfwflt.sys

Digital Signature
Signed by:
Ahkun CO., LTD.

Authority:
GlobalSign nv-sa

Valid from:
1/26/2015 3:09:21 PM

Valid to:
4/26/2016 3:09:21 PM

Subject:
E=info@ahkun.jp, CN="Ahkun CO., LTD.", OU=Development Dept., O="Ahkun CO., LTD.", L="Chiyoda-ku, Iwamoto-cho", S=Tokyo, C=JP

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11217D173E59C726FA33544DBC3AA4A72C3F

File PE Metadata
Compilation timestamp:
5/25/2015 12:13:16 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
384:9s5B8Gsy2HcLfGVefsmGAmEfvaT9pR6bZWe3g8vMwJ+onKuJ+HPmxYUIKJ7251zK:u/GVOsmGAXapLsg86HP3rQKDWigHx

Entry address:
0x9218

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, E8, FD, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, 5B, 74, 64, 69, 5F, 66, 77, 5D, 44, 72, 69, 76, 65, 72, 45, 6E, 74, 72, 79, 20, 53, 75, 63, 63, 65, 73, 73, 0D, 0A, 00, CC, CC, 5B, 74, 64, 69, 5F, 66, 77, 5D, 41, 68, 6B, 53, 65, 72, 76, 69, 63, 65, 5F, 50, 49, 44, 20, 3D, 20, 25, 64, 2C, 20, 41, 68, 6B, 55, 70, 64, 61, 74, 65, 53, 65, 72, 76, 69, 63, 65, 5F, 50, 49, 44, 3D, 20, 25, 64, 0D, 0A, 00, CC, CC, CC, CC, CC, CC, CC, CC, 5B, 74, 64, 69, 5F, 66, 77, 5D...
 
[+]

Entropy:
6.4469

Code size:
22.5 KB (23,040 bytes)

Driver
Display name:
AhkFwFlt

Description:
AhkFwFlt network-filter driver

Type:
Kernel device driver (KernelDriver)

Group:
PNP_TDI

Depends on:
Tcpip


Scan ahkfwflt.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.