esh3fw.dll

Windows Win 7 DDK driver

TOSHIBA TEC CORPORATION

Scan esh3fw.dll - Powered by Reason Core Security
Publisher:
TOSHIBA TEC CORPORATION

Product:
Windows (R) Win 7 DDK driver

Description:
TOSHIBA Pipeline SDK

Version:
6.20.2521.7

MD5:
92b82d0a4ab15b23b575ee0548fb35a0

SHA-1:
d6658d621ffa9a1a82fecf19c14a84874ac0f984

SHA-256:
a419cf40b7daf7ea6393222b3a369b28ba2200daf04598b821c4db8adc3de9c1

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/8/2016 7:21:21 PM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Malware.Obscure!1.9C59
23.00.65.14608

File size:
3.1 MB (3,259,392 bytes)

Product version:
6.20.2521.7

Copyright:
Copyright (c) 2010 TOSHIBA TEC CORPORATION All Rights Reserved.

Original file name:
eS3fw.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
5/11/2011 6:51:44 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
49152:45R63dckRyS8DQJXsFakvOSAFdYxACKT+umB2Ee:b8DIMalFdYxGm

Entry address:
0x1F5DBA

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, FA, 79, FF, FF, 5D, E9, 9F, FD, FF, FF, 57, 56, 53, 33, FF, 8B, 44, 24, 14, 0B, C0, 7D, 14, 47, 8B, 54, 24, 10, F7, D8, F7, DA, 83, D8, 00, 89, 44, 24, 14, 89, 54, 24, 10, 8B, 44, 24, 1C, 0B, C0, 7D, 14, 47, 8B, 54, 24, 18, F7, D8, F7, DA, 83, D8, 00, 89, 44, 24, 1C, 89, 54, 24, 18, 0B, C0, 75, 18, 8B, 4C, 24, 18, 8B, 44, 24, 14, 33, D2, F7, F1, 8B, D8, 8B, 44, 24, 10, F7, F1, 8B, D3, EB, 41, 8B, D8, 8B, 4C, 24, 18, 8B, 54, 24, 14, 8B, 44, 24, 10, D1, EB, D1...
 
[+]

Entropy:
6.6701

Code size:
2.2 MB (2,298,880 bytes)

Scan esh3fw.dll - Powered by Reason Core Security