home

LongRADrv.sys

云端软件平台

Cheng Du YunDuan Network Tech.,Ltd

It runs as a Windows kernel mode device driver named “LongRADrv”.
Publisher:
long  (signed by Cheng Du YunDuan Network Tech.,Ltd)

Product:
云端软件平台

Version:
9, 10, 5, 17

MD5:
266b4c1ea0e9b8f4432b0de0ec6b0ef8

SHA-1:
218a6a5ee833a165f02b229675cc51e606df6136

SHA-256:
1c22b57054a5347b0d0fb4f46c535bc987981b2c448558c628bbf10054997244

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 7:16:32 PM UTC  (today)

File size:
71.6 KB (73,328 bytes)

Product version:
9, 10, 5, 17

Copyright:
版权所有 (C) 成都云端网络技术有限公司

Original file name:
LongRADrv.sys

File type:
Driver (Win32 SYS)

Language:
Chinese (Simplified, PRC)

Digital Signature
Signed by:
Cheng Du YunDuan Network Tech.,Ltd

Authority:
GlobalSign nv-sa

Valid from:
10/12/2009 9:52:41 PM

Valid to:
10/12/2010 9:52:41 PM

Subject:
CN="Cheng Du YunDuan Network Tech.,Ltd", O="Cheng Du YunDuan Network Tech.,Ltd", C=CN

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
010000000001244C60A585

File PE Metadata
Compilation timestamp:
5/17/2010 6:48:09 AM

OS version:
5.2

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
7.10

CTPH (ssdeep):
1536:eL3ylY0yzg858SUWF+i9VVwkxJpoNYrKD+C+Sivdbj:7y08+7Li9VVw4bKANB

Entry address:
0x14000

Entry point:
A1, 78, 00, 02, 00, 85, C0, B9, 4E, E6, 40, BB, 74, 04, 3B, C1, 75, 19, A1, 5C, F1, 01, 00, 8B, 00, 35, 78, 00, 02, 00, A3, 78, 00, 02, 00, 75, 06, 89, 0D, 78, 00, 02, 00, E9, 4E, D9, FE, FF, 84, 40, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 5C, 49, 01, 00, 18, F0, 00, 00, 6C, 40, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, D2, 49, 01, 00, 00, F0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, A6, 49, 01, 00, 92, 49, 01, 00, 7E, 49, 01, 00, 6A, 49, 01, 00, BC, 49, 01, 00...
 
[+]

Entropy:
6.6823

Code size:
56 KB (57,344 bytes)

Driver
Display name:
LongRADrv

Type:
Kernel device driver (KernelDriver)


Scan LongRADrv.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.