home

NESSLDrv.sys

Network Extender driver for Windows.

Billion Electric Co., Ltd.

It runs as a Windows kernel mode device driver named “Network Extender SSLVPN Adapter”.
Publisher:
Billion Electric Co., Ltd.  (signed and verified)

Product:
Network Extender driver for Windows.

Description:
NESSLDrv Network Extender driver for Windows.

Version:
101.04.03

MD5:
40a7f9b937755ca81e9df2ac6aa30e7a

SHA-1:
ea45b77a0bdad25159a1fba3d3debb26c824883e

SHA-256:
8515a17bf95cf8e9189d9528fd7589956b2094c606f6866038625e539f966eab

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 11:00:38 PM UTC  (a few moments ago)

File size:
19 KB (19,408 bytes)

Product version:
101.04.03.0002

Copyright:
Copyright 08 31 2006, Billion Electric Co., Ltd.

Original file name:
NESSLDrv.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\nessldrv.sys

Digital Signature
Signed by:
Billion Electric Co., Ltd.

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
5/13/2008 1:57:14 PM

Valid to:
5/13/2010 1:57:14 PM

Subject:
CN="Billion Electric Co., Ltd.", OU=MIS, O="Billion Electric Co., Ltd.", L=Taipei, S=Taiwan, C=TW

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
20FC7B50A2DDAD385AF0CC8CF549CABD

File PE Metadata
Compilation timestamp:
3/21/2007 5:47:52 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
7.0

CTPH (ssdeep):
384:5uDko9JZ0/RObAJMsg36aOlQfe8nNYJL0Dx7dCUD00y:GC40msg3Zf5n4LSdCb0y

Entry address:
0x1352

Entry point:
55, 8B, EC, 83, EC, 60, 8B, 45, 08, 57, 6A, 00, FF, 75, 0C, A3, 48, 24, 01, 00, 50, 68, 40, 24, 01, 00, FF, 15, 70, 20, 01, 00, 6A, 18, 59, 33, C0, 8D, 7D, A0, F3, AB, 20, 45, A1, 6A, 60, 8D, 45, A0, 50, FF, 35, 40, 24, 01, 00, C6, 45, A0, 05, C7, 45, A4, 01, 00, 00, 00, C7, 45, BC, C6, 11, 01, 00, C7, 45, A8, 3C, 0E, 01, 00, C7, 45, B4, 68, 11, 01, 00, C7, 45, CC, B6, 11, 01, 00, C7, 45, DC, 64, 15, 01, 00, C7, 45, F0, 68, 1C, 01, 00, C7, 45, F4, 7E, 1C, 01, 00, C7, 45, FC, EC, 17, 01, 00, C7, 45, F8, 9E...
 
[+]

Entropy:
6.1088

Developed / compiled with:
Microsoft Visual C++

Code size:
8.5 KB (8,704 bytes)

Driver
Display name:
Network Extender SSLVPN Adapter

Service name:
NESSLDrv

Type:
Kernel device driver (KernelDriver)

Group:
NDIS


Scan NESSLDrv.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.