home

eseadriver2.sys

E-Sports Entertainment LLC

It runs as a Windows kernel mode device driver named “ESEADriver2”.
Publisher:
E-Sports Entertainment LLC  (signed and verified)

MD5:
e71add4aae1ba49c67b782e5e06b5e25

SHA-1:
61e21124d34bcd2e73f0cff3ddd23935e14aaf00

SHA-256:
12b7d6dde06d9cfb78df8d063411d3f1b8514472c68c5eff8239a1ee0b74cdf3

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/30/2024 3:49:13 AM UTC  (today)

File size:
314.6 KB (322,200 bytes)

File type:
Driver (Win32 SYS)

Common path:
C:\users\{user}\appdata\local\temp\eseadriver2.sys

Digital Signature
Signed by:
E-Sports Entertainment LLC

Authority:
DigiCert Inc

Valid from:
7/30/2015 8:00:00 PM

Valid to:
8/8/2018 8:00:00 AM

Subject:
CN=E-Sports Entertainment LLC, O=E-Sports Entertainment LLC, L=Commack, S=New York, C=US, PostalCode=11725, STREET=62 Rensselaer Drive, SERIALNUMBER=3056246, OID.1.3.6.1.4.1.311.60.2.1.2=New York, OID.1.3.6.1.4.1.311.60.2.1.3=US, OID.2.5.4.15=Private Organization

Issuer:
CN=DigiCert EV Code Signing CA (SHA2), OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0714C6EEE819B825C85516B7CFD1F2D2

File PE Metadata
Compilation timestamp:
8/5/2015 2:45:01 AM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
6144:t+IwyRg1qjT2gLj+hCafX1PqPq+IMfIdEBLL9fQKEzZOliWf3Wspc:kgRjTTLjXkIIcIdEBL+KiZOIu3xp

Entry address:
0x53AD3

Entry point:
68, FB, E9, 41, 32, 68, 1D, F1, 23, 67, C7, 44, 24, 04, 66, E4, F5, 7F, 54, C7, 44, 24, 04, 69, 61, EA, CE, C7, 04, 24, 8D, C5, 27, 44, C6, 04, 24, 40, 89, 3C, 24, 9C, 8D, 64, 24, 08, E9, 5A, 5E, 03, 00, 9C, 88, 54, 24, 04, 8D, 64, 24, 2C, 0F, 84, CF, 11, 00, 00, 66, 0F, B6, C0, 66, 0F, C8, E9, 99, 2F, FF, FF, 88, 14, 24, E9, 7F, 38, FF, FF, 8D, 64, 24, 14, 0F, 85, 0B, EF, FE, FF, 84, F6, 66, 0F, BB, F6, 66, C1, FE, 05, 89, F9, 66, 81, F6, 66, 14, F5, 29, D9, 66, 81, FB, 2A, 65, D1, E6, 89, E6, F9, F8, F9...
 
[+]

Entropy:
7.9216  (probably packed)

Code size:
26.5 KB (27,136 bytes)

Driver
Display name:
ESEADriver2

Type:
Kernel device driver (KernelDriver)

Group:
Base


Scan eseadriver2.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.