home

intelhaxm.sys

Intel Corporation

It runs as a Windows 64-bit kernel mode device driver named “Intel HAXM Service”. This is installed with Intel® Hardware Accelerated Execution Manager.
Publisher:
Intel Corporation  (signed and verified)

MD5:
524762664384737eb02f62ac03054ecf

SHA-1:
6518f02e8b87bde2724adb9fd2c6ce34670caaf3

SHA-256:
2d79e54d9de559ddcd8b6d9c34ec1017a14daada083be98acf5bcba06a8637e8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 4:09:52 PM UTC  (today)

File size:
89.3 KB (91,392 bytes)

File type:
Driver (Win64 SYS)

Common path:
C:\Windows\System32\drivers\intelhaxm.sys

Digital Signature
Signed by:
Intel Corporation

Authority:
Intel Corporation

Valid from:
10/30/2013 11:53:43 PM

Valid to:
10/15/2016 12:53:43 AM

Subject:
E=kai.z.wang@intel.com, CN=Intel Corp-HAXM Project, O=Intel Corporation, L=Santa Clara, S=CA, C=US

Issuer:
CN=Intel External Basic Issuing CA 3B, O=Intel Corporation, L=Santa Clara, S=CA, C=US

Serial number:
330000ADCF17F86CD3825A004800020000ADCF

File PE Metadata
Compilation timestamp:
3/14/2014 2:12:40 AM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
1536:bpCsUkQzK6RXukz0cr9YTW9LDW+fFJZRpIg4QYWujO1SNaTKBPX7jbD5OXEO2pEL:d7UkQzKoXr9Xl1fFJZRpIg4QYnjO1SNc

Entry address:
0x15064

Entry point:
48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, 2A, C1, FE, FF, CC, CC, B0, 50, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 56, 01, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, D8, 52, 01, 00, 00, 00, 00, 00, F2, 52, 01, 00, 00, 00, 00, 00, 0A, 53, 01, 00, 00, 00, 00, 00, 22, 53, 01, 00, 00, 00, 00, 00, 34, 53, 01, 00, 00, 00, 00, 00, 4A, 53, 01, 00, 00, 00, 00, 00, 62, 53, 01, 00...
 
[+]

Entropy:
6.3969

Code size:
68.5 KB (70,144 bytes)

Driver
Display name:
Intel HAXM Service

Service name:
IntelHaxm

Type:
Kernel device driver (KernelDriver)


The file intelhaxm.sys has been discovered within the following program.

Intel® Hardware Accelerated Execution Manager  by Intel Corporation
www.intel.com
11% remove it
 
Powered by Should I Remove It?

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.