» radpms.sys
Overview
Analysis
File Details

radpms.sys

RemotelyAnywhere

3am Labs, Inc.

File name:

radpms.sys

Publisher:

3am Labs, Inc. (signed and verified)

Product:

RemotelyAnywhere

Description:

RemotelyAnywhereDpmsSecure Device Driver

Version:

6.00.446

MD5:

e82bb8bdc08968f67bfcb3ae045b1fa1

SHA-1:

9a8074fd2d594f7c6ba68776f8f9110bc8bc8384

SHA-256:

3695ce0c83ff764857b3b5ae7bb0038f3b08fc1226eb03711edec04a875d70ed

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

4/16/2024 3:30:58 AM UTC (today)

Scan engine

Detection

Engine version

IKARUS anti.virus

not-a-virus:RemoteAdmin.Win32.RemotelyAnywhere.a

15.11.22

File size:

9.3 KB (9,472 bytes)

Product version:

6.00.446

Original file name:

radpms.sys

File type:

Driver (Win32 SYS)

Language:

English (United States)

Common path:

C:\Program Files\remotelyanywhere\radpms.sys

Digital Signature

Signed by:

3am Labs, Inc.

Authority:

Thawte Consulting (Pty) Ltd.

Valid from:

10/5/2005 2:52:50 PM

Valid to:

10/7/2006 2:36:28 PM

Subject:

CN="3am Labs, Inc.", OU=Secure Application Development, O="3am Labs, Inc.", L=Woburn, S=Massachusetts, C=US

Issuer:

CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:

21E60D

File PE Metadata

Compilation timestamp:

9/24/2004 5:30:37 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Native (none required)

Linker version:

7.10

CTPH (ssdeep):

96:uM3IAxKjs7p/vizp4P7GJ7Wy3dpoz6vuegOH9C3gXzv7zQMLy+Cgzdew5mog+MSc:R4WpHi6onthWOA3gtL/CldolMKNgagR

Entry address:

0x7E6

Entry point:

8B, 44, 24, 04, B9, CC, 07, 01, 00, 89, 48, 40, 89, 48, 38, 8B, 48, 18, C7, 80, A4, 00, 00, 00, 04, 09, 01, 00, C7, 80, 90, 00, 00, 00, 7E, 09, 01, 00, C7, 40, 70, 86, 08, 01, 00, C7, 41, 04, C4, 04, 01, 00, C7, 40, 34, E2, 07, 01, 00, 33, C0, C2, 08, 00, 53, 8B, 5C, 24, 0C, 56, 8B, 74, 24, 0C, 85, F6, 75, 07, BE, 10, 00, 00, C0, EB, 36, 56, FF, 15, 10, 0A, 01, 00, 59, 8B, 4C, 24, 14, 8D, 44, 00, 02, 3B, 41, 04, 76, 07, BE, 23, 00, 00, C0, EB, 1A, 57, 8B, 7B, 0C, 8B, C8, 8B, D1, C1, E9, 02, F3, A5, 8B, CA... 
[+]

Entropy:

6.3372

Code size:

1.9 KB (1,920 bytes)

Scan radpms.sys - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.