home

rjvpnvmac.sys

RuiJie SSLVPN 虚拟网卡

FUJIAN RUIJIE NETWORKS CO.,LTD.

It runs as a Windows kernel mode device driver named “RuiJieSSLVPNvMacService”.
Publisher:
RuiJie Corporation  (signed by FUJIAN RUIJIE NETWORKS CO.,LTD.)

Product:
RuiJie SSLVPN 虚拟网卡

Description:
RuiJie SSLVPN Virtual Miniport Driver

Version:
6.3.421.0

MD5:
3803ff278e192330039a61f1ae4979ca

SHA-1:
0558c210ee55a5913058dea99a63e7495407dddc

SHA-256:
4e936be5707d79538999014efe0bc034514c04159f6301007e99ba0ae4b217a6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/20/2024 12:56:12 PM UTC  (today)

File size:
28.4 KB (29,072 bytes)

Product version:
6.3.421.0

Copyright:
Copyright (C) 2014 RuiJie Corporation

Original file name:
ruijievmac.sys

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\rjvpnvmac.sys

Digital Signature
Signed by:
FUJIAN RUIJIE NETWORKS CO.,LTD.

Authority:
Symantec Corporation

Valid from:
3/4/2016 8:00:00 AM

Valid to:
6/18/2017 7:59:59 AM

Subject:
CN="FUJIAN RUIJIE NETWORKS CO.,LTD.", O="FUJIAN RUIJIE NETWORKS CO.,LTD.", L=fuzhou, S=fujian, C=CN

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
053BE5094954C2A54D0EB3B55CB44BE7

File PE Metadata
Compilation timestamp:
4/25/2016 4:40:59 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
768:6thtWLGNuVgFt4P+AqiXPuVOUK7fIEyRmy9:+qgX4Dqiu/K7JyQy9

Entry address:
0x714D

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, A9, FE, FF, FF, CC, CC, CC, 34, 72, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, F4, 73, 00, 00, 84, 50, 00, 00, B0, 71, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 36, 74, 00, 00, 00, 50, 00, 00, BC, 71, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, E4, 76, 00, 00, 0C, 50, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 0E, 74, 00, 00, 22, 74, 00, 00, 00, 00, 00, 00, A8, 76, 00, 00, 92, 76, 00, 00, 74, 76, 00, 00, 5A, 76, 00, 00, 3C...
 
[+]

Entropy:
6.6167

Code size:
15.5 KB (15,872 bytes)

Driver
Display name:
RuiJieSSLVPNvMacService

Type:
Kernel device driver (KernelDriver)

Group:
NDIS


Scan rjvpnvmac.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.