home

eslwireacd.sys

EslWireACD

Turtle Entertainment GmbH

It runs as a Windows 64-bit kernel mode device driver named “ESLWireAC”.
Publisher:
<Turtle Entertainment>  (signed by Turtle Entertainment GmbH)

Product:
EslWireACD

Version:
1.0.0.5909

MD5:
30df843c68e4d2a8d564a04dbe3f71ea

SHA-1:
213d3ae7934ab406dce202eebaa9677ab0ed8bc7

SHA-256:
ab4eae1908ea6e125511ed2b717c0bd5fcdf2ca85701de15e1d9e6c6145edb1c

Scanner detections:
5 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
5/1/2024 5:02:25 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
Win32/Patched
2016.0.3205

Fortinet FortiGate
W32/Obfuscated.C!tr
2/8/2015

IKARUS anti.virus
Win32.Patched
t3scan.1.8.6.0

McAfee
Generic Obfuscated.c
5600.6861

Trend Micro House Call
Suspicious_GEN.F47V0201
7.2.39

File size:
100.3 KB (102,688 bytes)

Product version:
1.0

Copyright:
Copyright © 2010

Original file name:
EslWireACD

File type:
Driver (Win64 SYS)

Common path:
C:\Windows\System32\drivers\eslwireacd.sys

Digital Signature
Signed by:
Turtle Entertainment GmbH

Authority:
GlobalSign nv-sa

Valid from:
1/8/2015 4:02:22 PM

Valid to:
4/8/2016 5:02:22 PM

Subject:
CN=Turtle Entertainment GmbH, O=Turtle Entertainment GmbH, L=Cologne, S=NRW, C=DE

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121CA414E26A79FC3D34553A430BC8FEFAD

File PE Metadata
Compilation timestamp:
1/27/2015 2:34:12 PM

OS version:
6.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
11.0

CTPH (ssdeep):
3072:7CMKQx84XfLDJosz4gWFfS+imBhcb01ohMF:71xXXJNztkS+7cb01ohW

Entry address:
0x62C5C

Entry point:
0F, 8B, 58, 77, FF, FF, 68, 6D, 3B, 97, 1D, E9, BB, 2F, 00, 00, F9, E9, 40, 82, FF, FF, 0F, BA, E1, 15, F5, F6, D0, 3C, C3, F5, 38, E7, 66, 85, C1, 34, E0, E9, 4A, 80, FF, FF, FE, C8, F9, F5, F9, E9, E0, 3C, 00, 00, EA, B1, 54, 9E, DD, 8A, DD, 74, 32, 36, 41, 5A, CC, FD, 50, D4, 0B, FF, FE, FF, 0E, FF, B2, 96, 57, 96, 29, 22, 28, 3C, 2B, CF, 26, C7, 48, 6C, E1, 8A, 42, 56, 29, 1D, 52, 79, A9, AD, DA, B1, EB, 3F, 85, C1, 07, BC, 76, 01, 00, 00, 00, 1D, 9B, 7E, FC, D4, 01, 00, 00, 00, 21, 4B, D8, 3B, 65, B0...
 
[+]

Code size:
17.5 KB (17,920 bytes)

Driver
Display name:
ESLWireAC

Type:
Kernel device driver (KernelDriver)


Scan eslwireacd.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.