home

di_api_dr_xp.sys

Friendly Technologies DialerApi Driver Programed by Efraim Neuberger

Friendly Technologies (F.T.L.) Ltd.

It runs as a Windows 64-bit kernel mode device driver named “Di_API_Dr_XP”.
Publisher:
Friendly Technologies, Ltd.  (signed by Friendly Technologies (F.T.L.) Ltd.)

Product:
Friendly Technologies DialerApi Driver Programed by Efraim Neuberger

Description:
DialerApi Driver Friendly Technologies

Version:
3.1.1.000 built by: WinDDK

MD5:
b7ffa6c87e4652e83442fcb81e6e18c2

SHA-1:
056a8d69033829864b72085a039e41d9a763c478

SHA-256:
91c07cb19c3c315956724dac8850293223d8ac4d1214af6759fc0eca302fe0ae

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 3:41:36 PM UTC  (today)

File size:
18 KB (18,408 bytes)

Product version:
3.1.1.000

Copyright:
2006,2008 Friendly Technologies, Ltd.

Original file name:
Di_API_DrVista

File type:
Driver (Win64 SYS)

Common path:
C:\Windows\System32\drivers\di_api_dr_xp.sys

Digital Signature
Signed by:
Friendly Technologies (F.T.L.) Ltd.

Authority:
VeriSign, Inc.

Valid from:
8/19/2009 9:00:00 AM

Valid to:
6/1/2010 8:59:59 AM

Subject:
CN=Friendly Technologies (F.T.L.) Ltd., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Friendly Technologies (F.T.L.) Ltd., L=Ramat Gan, S=Israel, C=IL

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6907A61E1CF068A41BE5CEBEC66D6183

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
192:Xz/IeQk7jcoXsim2LouUGXBgayowJL/nM4p+ebMHCMjGwP7VQpkqs1I5Zgjlh0aY:ck7ax2LoPkB/YJLZfbg+G1M6jl+bCgEq

Entry point:
8B, FF, 55, 8B, EC, A1, 20, 30, 01, 00, 85, C0, B9, 4E, E6, 40, BB, 74, 04, 3B, C1, 75, 1E, 8B, 15, 48, 20, 01, 00, B8, 20, 30, 01, 00, C1, E8, 08, 33, 02, A3, 20, 30, 01, 00, 75, 07, 8B, C1, A3, 20, 30, 01, 00, F7, D0, A3, 24, 30, 01, 00, 5D, E9, 01, D6, FF, FF, CC, 70, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 54, 42, 00, 00, 00, 20, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, C8, 40, 00, 00, E0, 40, 00, 00, F4, 40, 00, 00, 04, 41, 00, 00, 14, 41, 00, 00, 2E...
 
[+]

Entropy:
6.3222

Driver
Display name:
Di_API_Dr_XP

Type:
Kernel device driver (KernelDriver)


Scan di_api_dr_xp.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.