home

eslwireacd.sys

EslWireACD

Turtle Entertainment GmbH

It runs as a Windows 64-bit kernel mode device driver named “ESLWireAC”.
Publisher:
<Turtle Entertainment>  (signed by Turtle Entertainment GmbH)

Product:
EslWireACD

Version:
1.0.0.6101

MD5:
991748249b9c734d35e319105d2003a7

SHA-1:
bfaea8fcded19148682bbd47773826e8708cfb43

SHA-256:
57af25c245c41297316822cdda06fb7ff72dcd78f89a5744b9b55f255ab41b55

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/1/2024 8:43:48 AM UTC  (today)

File size:
94.8 KB (97,056 bytes)

Product version:
1.0

Copyright:
Copyright © 2010

Original file name:
EslWireACD

File type:
Driver (Win64 SYS)

Language:
Language Neutral

Common path:
C:\Windows\System32\drivers\eslwireacd.sys

Digital Signature
Signed by:
Turtle Entertainment GmbH

Authority:
GlobalSign nv-sa

Valid from:
1/8/2015 4:02:22 PM

Valid to:
4/8/2016 5:02:22 PM

Subject:
CN=Turtle Entertainment GmbH, O=Turtle Entertainment GmbH, L=Cologne, S=NRW, C=DE

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121CA414E26A79FC3D34553A430BC8FEFAD

File PE Metadata
Compilation timestamp:
11/23/2015 12:13:20 PM

OS version:
6.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
11.0

CTPH (ssdeep):
1536:SCPosm5FuZu4vCVPG5uGP1dbjG2BZTUGCOuQKGqtUbJr:SN3uZuhG53dbjNfTZC1dtUbl

Entry address:
0x6407B

Entry point:
E9, D8, 52, FF, FF, F8, FF, 37, F6, C3, F0, 80, FC, 48, 38, C7, 66, 0F, A3, F4, 48, 39, DF, 0F, 87, 4C, C7, FF, FF, 0F, 87, C2, 60, FF, FF, F6, D8, 48, 39, EE, F7, C7, E6, 2E, 63, 5A, D0, C8, 48, 29, FB, B0, 73, C0, E0, 07, 38, D9, 0F, 9A, C0, 48, 01, E3, 0F, BE, F9, 0F, AC, FF, 01, 66, C1, EF, 0F, D3, FF, 48, 89, DF, D0, D8, 24, 28, C0, C0, 03, 18, E8, B0, 2E, F5, F2, AE, E9, 48, 3E, FF, FF, FF, 10, E9, 9B, 43, FF, FF, E8, A0, 21, FF, FF, E9, 92, 89, FF, FF, 0F, 8A, 2D, CF, FF, FF, 0F, 85, 7C, 63, FF, FF...
 
[+]

Packer / compiler:
tElock 0.99 - 1.0 private

Code size:
19.5 KB (19,968 bytes)

Driver
Display name:
ESLWireAC

Type:
Kernel device driver (KernelDriver)


Scan eslwireacd.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.