home

hitbliss.sys

HitBliss

Project Concord, Inc.

It runs as a Windows kernel mode device driver named “HitBliss WFP driver”.
Publisher:
Project Concord, Inc.  (signed and verified)

Product:
HitBliss

Description:
HitBliss WFP driver

Version:
1.0.0.17869

MD5:
b395ce2214951e39a067366e384ce9a6

SHA-1:
c64f29aca97fea8cfe48b459a716c79a2efa0146

SHA-256:
ebccd737778c4b3200159653165dbedbdc885dbaf4ec14d2ba81719313d350b2

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 7:17:34 AM UTC  (today)

File size:
16.6 KB (16,984 bytes)

Product version:
1.0.0.17869

Copyright:
(c) 2009-2012 Project Concord, Inc.

Original file name:
hitbliss.sys

File type:
Driver (Win32 SYS)

Language:
Language Neutral

Common path:
C:\Windows\System32\drivers\hitbliss.sys

Digital Signature
Signed by:
Project Concord, Inc.

Authority:
GlobalSign nv-sa

Valid from:
12/13/2012 9:09:55 AM

Valid to:
12/14/2015 9:09:55 AM

Subject:
CN="Project Concord, Inc.", O="Project Concord, Inc.", L=Lexington, S=MA, C=US

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
112107946FD0DF4D46472B3E7EA1FD6BFB4C

File PE Metadata
Compilation timestamp:
7/19/2013 10:00:38 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
384:9GDOCoyAhxek6G9oQWaJD9zwlasSLOCPKjMCrYidUb+Dh:9Ny0xevmJDN/OCPXesiF

Entry address:
0xD06

Entry point:
55, 8B, EC, 83, EC, 18, 53, 56, 57, E8, 38, FE, FF, FF, 8B, 5D, 08, A1, C8, 1D, 01, 00, 89, 1D, 90, 1F, 01, 00, 83, 38, 00, 76, 0A, BF, 5F, 03, 00, C0, E9, BA, 00, 00, 00, E8, D0, 01, 00, 00, 8B, F8, 85, FF, 0F, 85, AB, 00, 00, 00, 8B, 35, DC, 1D, 01, 00, 6A, 1B, 59, B8, FA, 0B, 01, 00, 8D, 7B, 38, F3, AB, 68, B2, 1C, 01, 00, 8D, 45, F8, 50, FF, D6, 68, 94, 1F, 01, 00, 6A, 01, 6A, 00, 6A, 22, 8D, 45, F8, 50, 6A, 00, 53, 8B, 1D, D0, 1D, 01, 00, FF, D3, 8B, F8, 85, FF, 75, 6A, A1, 94, 1F, 01, 00, 83, 48, 1C...
 
[+]

Entropy:
6.7268

Developed / compiled with:
Microsoft Visual C++

Code size:
7.6 KB (7,808 bytes)

Driver
Display name:
HitBliss WFP driver

Service name:
hitbliss

Type:
Kernel device driver (KernelDriver)

Depends on:
bfe


Scan hitbliss.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.