home

binguarddrv.sys

Shiftworks Co.,Ltd

It runs as a Windows 64-bit kernel mode device driver named “BinGuardDrv”.
Publisher:
Shiftworks Co.,Ltd  (signed and verified)

MD5:
d775d7dc89d8162b55671dcb4fc929ac

SHA-1:
361726d85edb8c64a3a49eaeb7fbd05b5aa83e66

SHA-256:
30b5dcbb40d8f994d3404e455d228d40fafc49b70808fb061e7ee0da343a0dcf

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/5/2024 1:39:16 AM UTC  (today)

File size:
19.9 KB (20,344 bytes)

File type:
Driver (Win64 SYS)

Common path:
C:\windows\syswow64\binguarddrv.sys

Digital Signature
Signed by:
Shiftworks Co.,Ltd

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
8/31/2009 9:00:00 AM

Valid to:
9/30/2011 8:59:59 AM

Subject:
CN="Shiftworks Co.,Ltd", OU=Dev team, O="Shiftworks Co.,Ltd", L=Gangnam-gu, S=Seoul, C=KR

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
35A817192FD49FE101A0CE5652416CE3

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
192:kWX/Lc6AO59c+F08d1D0d+bjD2KVXY91Kcg2uC157Eg2WOeyowJL/oU+:VX4Xe9c6DbjD2KVIfKcRHzYJL9+

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 36, B4, FF, FF, CC, CC, 78, 60, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 28, 62, 00, 00, 00, 30, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, C4, 60, 00, 00, D0, 60, 00, 00, DA, 60, 00, 00, F0, 60, 00, 00, FA, 60, 00, 00, 10, 61, 00, 00, 28, 61, 00, 00, 44, 61, 00, 00, 4E, 61, 00, 00, 60, 61, 00, 00, 78, 61, 00, 00, 90, 61, 00, 00, A8, 61, 00, 00, BA, 61, 00, 00, D6, 61, 00, 00, F2, 61, 00, 00, 0A, 62, 00, 00, 18, 62...
 
[+]

Entropy:
4.9355

Driver
Display name:
BinGuardDrv

Type:
Kernel device driver (KernelDriver)


Scan binguarddrv.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.