home

apwfp.sys

Padvish WFP Driver

Apsoft Bilgi Teknolojileri San. ve Tic. Ltd. Sti.

It runs as a Windows kernel mode device driver named “Amnpardaz WFP Firewall”.
Publisher:
Apsoft Bilgi Teknolojileri San. ve Tic. Ltd. Sti.  (signed and verified)

Product:
Padvish WFP Driver

Version:
2, 2, 1, 2219 built by: WinDDK

MD5:
ba072ba02902e39e5db474bc148ad273

SHA-1:
4a18d81666f292dff95dd1ea644a9542dba49c3a

SHA-256:
3007d3d90c32b2788d8a26ba95a4c398b9ae77c8423c2854b300f2bdabce788c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/28/2024 7:09:02 PM UTC  (today)

File size:
30.3 KB (30,976 bytes)

Product version:
2, 2, 1, 2219

Copyright:
Copyright © 2016 APSoft Bilgi Teknolojileri San. ve Tic. Ltd. Sti.

Original file name:
apwfp.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\apwfp.sys

Digital Signature
Signed by:
Apsoft Bilgi Teknolojileri San. ve Tic. Ltd. Sti.

Authority:
DigiCert Inc

Valid from:
5/20/2015 4:30:00 AM

Valid to:
8/16/2018 4:30:00 PM

Subject:
CN=Apsoft Bilgi Teknolojileri San. ve Tic. Ltd. Sti., O=Apsoft Bilgi Teknolojileri San. ve Tic. Ltd. Sti., L=Istanbul, C=TR

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
038AAB1C01EB9FBB8C3379E727F9026D

File PE Metadata
Compilation timestamp:
8/17/2016 3:21:10 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
384:bmgFN92iDYsP7VWMCRakri1F1sV3QVWjy0dLm5Yd0o3Gt0dtdxi61ZsaZZvzta:bmgFu7IhWMIaVsJfjju0dXw6K

Entry address:
0x703E

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 52, A2, FF, FF, CC, CC, 3C, 71, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 80, 74, 00, 00, 88, 50, 00, 00, B4, 70, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, DE, 74, 00, 00, 00, 50, 00, 00, CC, 70, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, D6, 77, 00, 00, 18, 50, 00, 00, C0, 70, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 24, 78, 00, 00, 0C, 50, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, BC, 74, 00, 00, 9A, 74, 00, 00, 00, 00...
 
[+]

Entropy:
6.3786

Code size:
17.5 KB (17,920 bytes)

Driver
Display name:
Amnpardaz WFP Firewall

Service name:
APWfpDriver

Type:
Kernel device driver (KernelDriver)


Scan apwfp.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.