home

eslwireacd.sys

EslWireACD

Turtle Entertainment GmbH

It runs as a Windows 64-bit kernel mode device driver named “ESLWireAC”.
Publisher:
<Turtle Entertainment>  (signed by Turtle Entertainment GmbH)

Product:
EslWireACD

Version:
1.0.0.5935

MD5:
a1e2bcc1b7a9b761fcc67d41bcb907c1

SHA-1:
72f96d0b3bdc62239c511a96de53a8064c0f8a6f

SHA-256:
f72593aba79990fdfcd14265533310260a12b8d0d6fe1cc1ba96831f14743358

Scanner detections:
6 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/30/2024 9:59:32 PM UTC  (today)

Scan engine
Detection
Engine version

AVG
Win32/Patched
2016.0.3183

Fortinet FortiGate
W32/Obfuscated.C!tr
3/2/2015

IKARUS anti.virus
Win32.Patched
t3scan.1.8.6.0

McAfee
Artemis!A1E2BCC1B7A9
5600.6839

Trend Micro House Call
Suspicious_GEN.F47V0204
7.2.61

VIPRE Antivirus
Trojan.Win32.Generic
37732

File size:
104.3 KB (106,784 bytes)

Product version:
1.0

Copyright:
Copyright © 2010

Original file name:
EslWireACD

File type:
Driver (Win64 SYS)

Language:
Language Neutral

Common path:
C:\Windows\System32\drivers\eslwireacd.sys

Digital Signature
Signed by:
Turtle Entertainment GmbH

Authority:
GlobalSign nv-sa

Valid from:
1/8/2015 4:02:22 PM

Valid to:
4/8/2016 5:02:22 PM

Subject:
CN=Turtle Entertainment GmbH, O=Turtle Entertainment GmbH, L=Cologne, S=NRW, C=DE

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121CA414E26A79FC3D34553A430BC8FEFAD

File PE Metadata
Compilation timestamp:
2/2/2015 3:50:43 PM

OS version:
6.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
11.0

CTPH (ssdeep):
3072:nujaqvOi0YadCTrKx2a5c7jBZvmg8q96t:ujVv/0Y5Tex2gcjx8i6t

Entry address:
0x5999A

Entry point:
0F, 89, 8E, E2, 00, 00, 68, B8, F6, CE, 1C, E9, 6A, 82, 00, 00, 78, C3, 58, 68, 0A, 66, 10, 97, 74, 6C, 6B, 3E, 2B, 52, 7C, 3D, 37, 7E, 1E, 7F, 07, 99, 2D, F5, 32, 47, 18, E1, E7, F8, 1D, 7D, 34, 7E, 78, 5F, 88, 6F, 3F, 97, A2, 00, 58, B5, 89, 2E, 70, 90, 18, 50, 67, 86, 56, 66, 2C, 8B, 7D, 10, 51, 60, 1E, 31, 3E, 11, 5E, 92, 7E, BD, 9D, 75, 3C, 50, FF, AC, 2E, 91, 97, 24, 55, 47, 38, B8, 75, 18, 57, 77, F5, FD, F4, 7B, B8, 16, 3D, 5D, E8, 89, 01, F8, 19, 0A, 8A, 4F, 10, EF, 7E, 58, 7F, 08, EB, 1A, 73, 71...
 
[+]

Code size:
18 KB (18,432 bytes)

Driver
Display name:
ESLWireAC

Type:
Kernel device driver (KernelDriver)


Scan eslwireacd.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.