home

bdfree_vista_x64.sys

BDFree

Publisher:
BDFree  (signed and verified)

MD5:
29096496a5730197143264c1973bb2be

SHA-1:
b37c81697888f1bd76d60a5f0e3171bd7f9df9ea

SHA-256:
8988ffee2d41b9dca13cdcb39cd0cfdd55308063ecfc2aeac24537c699f4f1f3

Scanner detections:
4 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/26/2024 8:45:51 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
Win32/Patched
2016.0.3152

Bkav FE
W64.HfsReno
1.3.0.4959

IKARUS anti.virus
Win32.Patched
t3scan.1.8.3.0

Trend Micro House Call
Suspicious_GEN.F47V1029
7.2.92

File size:
153.6 KB (157,304 bytes)

File type:
Driver (Win64 SYS)

Common path:
C:\Program Files\bdfree\driver\bdfree_vista_x64.sys

Digital Signature
Signed by:
BDFree

Authority:
BDFree

Valid from:
3/29/2012 11:45:32 PM

Valid to:
12/31/2039 5:59:59 PM

Subject:
CN=BDFree

Issuer:
CN=BDFree

Serial number:
F2B6DB39EC243F974A5875C7EB007B12

File PE Metadata
Compilation timestamp:
4/6/2012 4:27:39 AM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
3072:eLR/5ugcxSbAFPByf9XUfDFvu4Hebl/urvyD3VILIqW:eLnKxlPs9XiF7Hep/gyDW5W

Entry address:
0x476EE

Entry point:
E9, 17, D1, FF, FF, 48, 39, D0, E9, FD, BB, FF, FF, F9, F9, 80, 3F, 23, E9, 85, 04, 00, 00, 0F, BA, E5, 13, F6, D8, E9, EF, 2A, 00, 00, 48, 8D, 35, E9, B9, FF, FF, 0F, 80, 32, CE, FF, FF, E8, 93, 44, 00, 00, E9, 28, 49, 00, 00, 0F, 87, 94, 45, 00, 00, 66, 0F, BA, E1, 02, E9, 46, 0D, 00, 00, 48, 8B, 7D, 10, 48, 0F, BE, F0, 48, 8D, 35, BA, B9, FF, FF, E9, 31, E4, FF, FF, 0F, 84, 34, 24, 00, 00, E9, 65, 40, 00, 00, F5, 09, C9, E9, 89, 0B, 00, 00, E9, 6F, 0B, 00, 00, E9, DE, 14, 00, 00, 66, 0F, A3, C9, F2, AE...
 
[+]

Entropy:
6.9200

Packer / compiler:
tElock 0.99 - 1.0 private

Code size:
12 KB (12,288 bytes)

Scan bdfree_vista_x64.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.