home

hldasvc.exe

HDDlife

NGO

It runs as a separate (within the context of its own process) windows Service named “HDDlife HDD Access service”.
Publisher:
BinarySense, Inc.  (signed by NGO)

Product:
HDDlife

Description:
HDDlife HDD access service

Version:
4, 0, 0, 62

MD5:
f4854a5dabfc8ed827a790cfc341c879

SHA-1:
76478716e9868b2c2cbd494ba615244fd1c75d42

SHA-256:
0deca83625ac2a6b6446284bf79da23798cb86f5a1cab25c884056aa6ff420b9

Scanner detections:
4 / 68

Status:
Clean  (4 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/19/2024 12:05:53 PM UTC  (today)

Scan engine
Detection
Engine version

AVG
Win32/Heur
2015.0.3486

IKARUS anti.virus
Virus.Win32.Heur
t3scan.1.6.1.0

Rising Antivirus
PE:Malware.Packed!1.9C4E
23.00.65.14501

Trend Micro House Call
TROJ_GEN.F47V0317
7.2.123

File size:
344 KB (352,256 bytes)

Product version:
4, 0, 0, 194

Copyright:
(c) 2004-2012, BinarySense, Inc.

Original file name:
hldasvc.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\common files\binarysense\hldasvc.exe

Digital Signature
Signed by:
NGO

Authority:
NGO

Valid from:
3/5/2014 11:55:20 PM

Valid to:
1/1/2040 1:59:59 AM

Subject:
CN=NGO

Issuer:
CN=NGO

Serial number:
5DB91A4562E367A747D7B02A7695E806

File PE Metadata
Compilation timestamp:
9/10/1987 9:27:18 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
15.255

CTPH (ssdeep):
3072:6UmT+Uy7/r2LJ7sxsBDC0qLeujUV6Qib1UZpmiQFVHe1v90hdRbpnilWb30kVzfS:6hiL7/QF7V6MpmbeGn2vL6ljc

Entry address:
0x10D000

Entry point:
68, 82, 2B, 02, 00, 60, 9C, B3, 03, B8, 3B, 00, 00, 00, E8, 31, 00, 00, 00, EB, 08, 56, 4D, 5F, 53, 54, 41, 52, 54, 8B, 10, F7, D2, C1, C2, 10, 81, F2, 46, 46, 46, 21, 89, 10, 83, C0, 04, 3B, C1, 7E, E0, 4B, 84, DB, 75, D1, EB, 08, 56, 4D, 5F, 56, 4D, 45, 4E, 44, EB, 0A, 03, 04, 24, 8D, 88, 0D, 0D, 00, 00, C3, B9, B9, 51, 20, B7, B9, B9, 36, F8, CB, B9, DE, DA, DA, D4, BF, CA, 97, DC, AD, D5, B9, DD, B2, 3C, B9, 46, 4B, 32, 41, B9, DE, B7, BE, 30, 63, 3C, 46, B9, DE, 34, 0C, CC, D2, B9, B9, 91, DB, CE, BD...
 
[+]

Code size:
804 KB (823,296 bytes)

Service
Display name:
HDDlife HDD Access service

Description:
HDDlife hard drive access service

Type:
Win32OwnProcess

Depends on:
RPCSS


Scan hldasvc.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.