home

HDCS.SYS

Hidden Data Cryption System and CopyStop Protection Tools

LASAK UK LTD

It runs as a Windows 64-bit kernel mode device driver named “HDCS”.
Publisher:
LASAK UK LTD  (signed and verified)

Product:
Hidden Data Cryption System and CopyStop Protection Tools

Description:
HDCS NT System Driver

Version:
1.25.1

MD5:
80d09bb46be4c6f311462c575592e72c

SHA-1:
e3d1458d01d004f01fabcf01cc09faab4c1eeff0

SHA-256:
2575b9bad1f9428cc1510adf9d466ba6c51f34604ceef1b5daa0c51602543feb

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/19/2024 4:41:28 PM UTC  (today)

Scan engine
Detection
Engine version

IKARUS anti.virus
Trojan.Rootkit
t3scan.2.2.29

File size:
57.6 KB (58,952 bytes)

Product version:
1.25

Copyright:
Copyright © 2010, LASAK UK LTD

Trademarks:
HDCS is property of LASAK UK LTD.

Original file name:
HDCS.SYS

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\hdcs.sys

Digital Signature
Signed by:
LASAK UK LTD

Authority:
GlobalSign nv-sa

Valid from:
8/10/2010 3:19:07 PM

Valid to:
8/10/2013 3:19:04 PM

Subject:
CN=LASAK UK LTD, O=LASAK UK LTD, L=LONDON, S=LONDON, C=GB

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000012A5BD3F5CE

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
1536:Bc/kDdEtwE0d31gmPm5k4B8vorzuGj4k1pjXjCFgSX3TVBMNtvC+giCN0:Bc/k5EtNDqvKFj4WdCFgkiN7l

Entry point:
A1, 9C, 40, 01, 00, 85, C0, B9, 4E, E6, 40, BB, 74, 04, 3B, C1, 75, 19, A1, 1C, 30, 01, 00, 8B, 00, 35, 9C, 40, 01, 00, A3, 9C, 40, 01, 00, 75, 06, 89, 0D, 9C, 40, 01, 00, E9, B9, FC, FF, FF, CC, 88, 84, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 1E, 8A, 00, 00, 0C, 30, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 2C, 8A, 00, 00, 40, 8A, 00, 00, 00, 00, 00, 00, 92, 85, 00, 00, AA, 85, 00...
 
[+]

Entropy:
7.0492

Driver
Display name:
HDCS

Type:
Kernel device driver (KernelDriver)


Scan HDCS.SYS - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.