home

hzrDriver.sys

Hazard Shield driver

Orbitech

It runs as a Windows 64-bit kernel mode device driver named “Hazard Shield driver”.
Publisher:
Orbitech  (signed and verified)

Product:
Hazard Shield driver

Version:
2.2.0.392 built by: WinDDK

MD5:
cd7ef179fcaa1be786e97d9c0e910f08

SHA-1:
b0210bd0e49029179d97dc6322637b8f8bb7da1d

SHA-256:
5893f3794d02a4808969b65696c56f553975e7cf812e8fc1d6b0fcc1ac9792b2

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 7:15:33 PM UTC  (today)

File size:
28.6 KB (29,320 bytes)

Product version:
2.2.0.392

Copyright:
Copyright (C) 2010 Orbitech

Original file name:
hzrDriver.sys

File type:
Driver (Win64 SYS)

Language:
Language Neutral

Common path:
C:\Program Files\hazard shield\hzrdriver.sys

Digital Signature
Signed by:
Orbitech

Authority:
GlobalSign nv-sa

Valid from:
8/2/2010 7:03:08 AM

Valid to:
8/3/2011 7:03:02 AM

Subject:
E=support@orbitech.org, CN=Orbitech, O=Orbitech, C=US

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000012A33356909

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
384:hQ//tfnIqr3oUKwEd5+Iu09RrMzIIFnSPb/HrY0rlLq2WO2kcaUs8j+/4x3TZfdN:S/tfDbENa09D4GlOROJ/BC+/4yirp51

Entry point:
48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, AE, A0, FF, FF, CC, CC, B0, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 5A, 86, 00, 00, 00, 50, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 48, 82, 00, 00, 00, 00, 00, 00, 5C, 82, 00, 00, 00, 00, 00, 00, 74, 82, 00, 00, 00, 00, 00, 00, 84, 82, 00, 00, 00, 00, 00, 00, 94, 82, 00, 00, 00, 00, 00, 00, AA, 82, 00, 00, 00, 00, 00, 00, C2, 82, 00, 00...
 
[+]

Entropy:
6.3866

Driver
Display name:
Hazard Shield driver

Service name:
hzrDriver

Type:
Kernel device driver (KernelDriver)


Scan hzrDriver.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.