» eseadriver2.sys
Overview
Analysis
File Details
Behaviors (1)

eseadriver2.sys

E-Sports Entertainment LLC

It runs as a Windows 64-bit kernel mode device driver named “ESEADriver2”.

File name:

eseadriver2.sys

Publisher:

E-Sports Entertainment LLC (signed and verified)

MD5:

44576dc6312ed4432abc68873f4feab9

SHA-1:

da38cf005516a6e0fd89262e125919099b581a20

SHA-256:

62640566c2e41783bb3e144c2c67d140ae8673268f3e5d6e2ac0cf648ca5de13

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/30/2024 6:37:55 AM UTC (today)

File size:

365.1 KB (373,912 bytes)

File type:

Driver (Win64 SYS)

Common path:

C:\users\{user}\appdata\local\temp\eseadriver2.sys

Digital Signature

Signed by:

E-Sports Entertainment LLC

Authority:

DigiCert Inc

Valid from:

7/30/2015 5:00:00 PM

Valid to:

8/8/2018 5:00:00 AM

Subject:

CN=E-Sports Entertainment LLC, O=E-Sports Entertainment LLC, L=Commack, S=New York, C=US, PostalCode=11725, STREET=62 Rensselaer Drive, SERIALNUMBER=3056246, OID.1.3.6.1.4.1.311.60.2.1.2=New York, OID.1.3.6.1.4.1.311.60.2.1.3=US, OID.2.5.4.15=Private Organization

Issuer:

CN=DigiCert EV Code Signing CA (SHA2), OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:

0714C6EEE819B825C85516B7CFD1F2D2

File PE Metadata

Compilation timestamp:

8/16/2015 12:53:28 PM

OS version:

6.1

OS bitness:

Win64

Subsystem:

Native (none required)

Linker version:

9.0

CTPH (ssdeep):

6144:ZIE9HPGnqP/pBUC7HGpTTsUI7Gc1VD1867FwnGvQRFMWQnInmoeimMbs9iv09dMW:ZIE9vaqMCypTwnDm67FwGvQgBIheimbv

Entry address:

0x5C24A

Entry point:

E9, 8C, 1A, 00, 00, 48, 8D, 84, 93, 00, 04, 00, 00, E9, 91, 3D, 00, 00, 48, 8D, 53, 08, 0F, 83, E2, 54, 00, 00, 48, BE, 5B, 59, D8, FC, FF, FF, FF, FF, 66, F7, D7, 48, 8B, 7D, 10, 66, 0F, B6, F2, E9, 03, E8, FF, FF, 0F, 8D, E5, 38, 00, 00, 10, D2, E9, 7A, 2A, 00, 00, 01, C2, E9, 88, B4, FF, FF, E9, 98, A9, FF, FF, FF, 10, 66, 0F, C1, FA, 48, 83, C4, 20, C1, F7, 18, 5A, 48, 0F, BA, FD, 13, 66, C1, E9, 04, 5F, E9, 00, 0E, 00, 00, 38, E3, F8, 48, 3B, 45, F0, E9, 6B, A7, FF, FF, 0F, 84, 43, 58, FF, FF, 84, D3... 
[+]

Entropy:

7.9069

Packer / compiler:

Xtreme-Protector v1.05

Code size:

33.5 KB (34,304 bytes)

Driver

Display name:

ESEADriver2

Type:

Kernel device driver (KernelDriver)

Group:

Base

Scan eseadriver2.sys - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.