home

drainwaresandboxloader64.dll

Drainware Systems S.L.

Publisher:
Drainware Systems S.L.  (signed and verified)

MD5:
8b8f20c809e9732290f2833f551be51c

SHA-1:
9f3fea98aebfba6ecd46130af521b35f53689472

SHA-256:
28f11f883cec5a58e114dc3de940bdad5c49b6214511ce17aa7c1212f5d3fd0b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 3:41:59 PM UTC  (today)

File size:
81.3 KB (83,200 bytes)

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\Windows\System32\drainwaresandboxloader64.dll

Digital Signature
Signed by:
Drainware Systems S.L.

Authority:
DigiCert Inc

Valid from:
5/30/2013 4:00:00 AM

Valid to:
8/6/2014 4:00:00 PM

Subject:
CN=Drainware Systems S.L., O=Drainware Systems S.L., L=Madrid, C=ES

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0322B2CB51B852B27E2401E7C13E862D

File PE Metadata
Compilation timestamp:
10/30/2013 10:59:15 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
1536:NpZB7sgDyHTX22ywh8/IXPS/RcQ58oTW8VsWtsy7d3sfG4:fsgDyHTG2yK8/IX0RcVGJ738

Entry address:
0x24B0

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, 43, 2E, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, 03, 00, 00, 00, CC, CC, CC, 48, 8B, C4, 48, 89, 58, 20, 4C, 89, 40, 18, 89, 50, 10, 48, 89, 48, 08, 56, 57, 41, 56, 48, 83, EC, 50, 49, 8B, F0, 8B, DA, 4C, 8B, F1, BA, 01, 00, 00, 00, 89, 50, B8, 85, DB, 75, 0F, 39, 1D, BC, FE, 00, 00, 75, 07, 33, C0, E9, D2, 00, 00, 00, 8D, 43, FF...
 
[+]

Entropy:
5.6537

Code size:
33.5 KB (34,304 bytes)

Scan drainwaresandboxloader64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.