home

prl_hypervisor_64.sys

Parallels Desktop 5.0

Parallels Inc

It runs as a Windows 64-bit kernel mode device driver named “Parallels Virtualization Hypervisor”.
Publisher:
Parallels Holdings, Ltd. and its affiliates.  (signed by Parallels Inc)

Product:
Parallels Desktop 5.0

Description:
Parallels Virtualization Hypervisor

Version:
5.0.10904.574350

MD5:
a2a76bec971b6ee19506228d17826777

SHA-1:
799551514d9ea4b093124770c7c51b23258aa290

SHA-256:
8d16374b0725631f6083cd2787bc259cc93f3288d04724b27d4cdd4ddc0d4fa2

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 2:28:52 AM UTC  (today)

File size:
211.8 KB (216,904 bytes)

Product version:
5.0 build 10904574350

Copyright:
Copyright 1999-2010 Parallels Holdings, Ltd. and its affiliates. All rights reserved.

Trademarks:
Parallels is a trademark of Parallels Holdings, Ltd. and its affiliates.

Original file name:
prl_hypervisor

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\windows\syswow64\drivers\prl_hypervisor_64.sys

Digital Signature
Signed by:
Parallels Inc

Authority:
GlobalSign nv-sa

Valid from:
4/9/2009 12:41:45 PM

Valid to:
4/9/2012 12:41:45 PM

Subject:
E=bgoode@parallels.com, CN=Parallels Inc, O=Parallels Inc, C=US

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
010000000001208BF6728F

File PE Metadata
Compilation timestamp:
5/12/2010 12:46:31 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
6144:fyp21WpHQNlV4aZPsUInrnTjhs7p8JR10UkLESiD5fQ4qCuztnzC:f0214wNzrPK3R10UoH

Entry address:
0x1982C

Entry point:
41, 57, 41, 56, 53, 48, 81, EC, 30, 02, 00, 00, 49, 89, D6, 48, 89, CB, 48, 8D, 0D, D3, DB, 06, 00, BA, 36, 00, 00, 00, 41, B8, 01, 00, 00, 00, E8, 8F, C0, FE, FF, 48, 8D, 0D, E4, DB, 06, 00, E8, E3, C0, FE, FF, E8, 42, 8C, FE, FF, 48, 8D, 8C, 24, F8, 01, 00, 00, 48, 89, C2, FF, 15, A1, 48, 00, 00, 48, 8D, 8C, 24, 08, 02, 00, 00, 48, 8D, 94, 24, F8, 01, 00, 00, 41, B8, 01, 00, 00, 00, FF, 15, 95, 48, 00, 00, 48, 8D, 8C, 24, 30, 01, 00, 00, 48, 8D, 15, FE, DB, 06, 00, 41, B8, 64, 00, 00, 00, E8, 53, 37, 00...
 
[+]

Code size:
115.5 KB (118,272 bytes)

Driver
Display name:
Parallels Virtualization Hypervisor

Type:
Kernel device driver (KernelDriver)


Scan prl_hypervisor_64.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.