home

lirsgt.sys

Tages SA

It runs as a Windows 64-bit kernel mode device driver named “lirsgt”.
Publisher:
Tages SA  (signed and verified)

MD5:
955982bf4421b77722196552b62e8dc2

SHA-1:
177667b7d36ebbb01b342641eb884f1b1a6c681d

SHA-256:
3732449acdbb78e1ed8436df153c899c28573f458fdcfe345dfa1b305d085033

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 6:21:47 PM UTC  (today)

File size:
45.3 KB (46,400 bytes)

File type:
Driver (Win64 SYS)

Common path:
C:\Windows\System32\drivers\lirsgt.sys

Digital Signature
Signed by:
Tages SA

Authority:
GlobalSign nv-sa

Valid from:
1/13/2009 3:00:51 PM

Valid to:
1/13/2010 3:00:51 PM

Subject:
E=support@tagesprotection.com, CN=Tages SA, O=Tages SA, C=FR

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000011ED08329C0

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
768:Qtl0O8EfJBQgIzE313hhk2jyQ8/cePHFTDGjRaaA6FO2LXiU:QE4PxIz0lhi2pYHBStHO2DiU

Entry point:
48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, 6A, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 5C, 00, 44, 00, 65, 00, 76, 00, 69, 00, 63, 00, 65, 00, 5C, 00, 6C, 00, 69, 00, 72, 00, 73, 00, 67, 00, 74, 00, 00, 00, CC, CC, 5C, 00, 44, 00, 6F, 00, 73, 00, 44, 00, 65, 00, 76, 00, 69, 00, 63, 00, 65, 00, 73, 00, 5C, 00, 6C, 00, 69, 00, 72, 00, 73, 00, 67, 00, 74, 00, 00, 00, CC, CC, 48, D2, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 7E, D5, 00, 00...
 
[+]

Entropy:
6.3616

Driver
Display name:
lirsgt

Type:
Kernel device driver (KernelDriver)


Scan lirsgt.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.