home

ldrce64.sys

LDRCE Driver

Insyde Software Corp.

It runs as a Windows 64-bit kernel mode device driver named “LDRCE”.
Publisher:
Insyde Software  (signed by Insyde Software Corp.)

Product:
LDRCE Driver

Description:
ldrce.sys

Version:
1.3.7.0

MD5:
7a0b642102d0b3d58a9205c9aebd1f50

SHA-1:
7385d7a01b2fdd058cf5bdc2184151be364ef3e8

SHA-256:
bedd0f7a4b46a5ff78e111d1e4c0cb22523f01d10cfbd33a59ff3b7903984c6d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 5:00:06 PM UTC  (today)

File size:
20.6 KB (21,056 bytes)

Product version:
1.3.7.0

Copyright:
Copyright (C) 2008 Insyde Software Corp.

Original file name:
ldrce.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\ldrce64.sys

Digital Signature
Signed by:
Insyde Software Corp.

Authority:
VeriSign, Inc.

Valid from:
12/29/2009 12:00:00 AM

Valid to:
12/28/2012 11:59:59 PM

Subject:
CN=Insyde Software Corp., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Insyde Software Corp., S=Taiwan, C=TW

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6D88BAB00D58F2FE947FA923925ACEF4

File PE Metadata
Compilation timestamp:
2/14/2012 6:48:34 AM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
384:MUFx/uuU+xUt7L9efejAgIDN443vhaLYJLt2BqbCFD1M6jB:lFx/uuU+NfmA3ZaaLMqbCFhMmB

Entry address:
0x7064

Entry point:
48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, 8E, 9F, FF, FF, CC, CC, B0, 70, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, E2, 72, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 48, 71, 00, 00, 00, 00, 00, 00, 60, 71, 00, 00, 00, 00, 00, 00, 78, 71, 00, 00, 00, 00, 00, 00, 8C, 71, 00, 00, 00, 00, 00, 00, B2, 71, 00, 00, 00, 00, 00, 00, CA, 71, 00, 00, 00, 00, 00, 00, DC, 71, 00, 00...
 
[+]

Entropy:
6.0657

Code size:
10.5 KB (10,752 bytes)

Driver
Display name:
LDRCE

Type:
Kernel device driver (KernelDriver)


Scan ldrce64.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.