home

scred_wlh_amd64.sys

SoftCamp Redirect Engine

SoftCamp Co., Ltd

Publisher:
SoftCamp  (signed by SoftCamp Co., Ltd)

Product:
SoftCamp Redirect Engine

Description:
Redirect Filter

Version:
1, 0, 2, 3

MD5:
c00754af31baae4593d804a9c6003fc3

SHA-1:
1e2472f9457ca5d1ef71da4764b2adc595f52c33

SHA-256:
31ae553f49481b81c23abf524e5c857046091675b80da83be4cf3e61c4e37014

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 1:25:56 AM UTC  (today)

File size:
19.9 KB (20,408 bytes)

Product version:
1, 0, 2, 3

Copyright:
ⓒ SoftCamp Co ., Ltd.

Original file name:
scred.sys

File type:
Driver (Win64 SYS)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\{f5a3287b-2532-4153-87b5-0139225a9e19}\scred_wlh_amd64.sys

Digital Signature
Signed by:
SoftCamp Co., Ltd

Authority:
VeriSign, Inc.

Valid from:
8/20/2009 9:00:00 AM

Valid to:
8/21/2010 8:59:59 AM

Subject:
CN="SoftCamp Co., Ltd", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="SoftCamp Co., Ltd", L=Gangnam-gu, S=Seoul, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
58F6153FDAFBCB4F5F847D41B9CC0D3A

File PE Metadata
Compilation timestamp:
2/12/2010 3:55:41 PM

OS version:
6.0

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
384:6U7x5IYTcxMY5eb0rDf56El34aYJLu1sOfbCt37T26:b0Ygx12GDf9loTLWBfbCtL66

Entry address:
0x7248

Entry point:
48, 8B, 05, B1, CE, FF, FF, 49, B9, 32, A2, DF, 2D, 99, 2B, 00, 00, 48, 85, C0, 74, 05, 49, 3B, C1, 75, 2F, 4C, 8D, 05, 96, CE, FF, FF, 48, B8, 20, 03, 00, 00, 80, F7, FF, FF, 48, 8B, 00, 49, 33, C0, 49, B8, FF, FF, FF, FF, FF, FF, 00, 00, 49, 23, C0, 49, 0F, 44, C1, 48, 89, 05, 6E, CE, FF, FF, 48, F7, D0, 48, 89, 05, 6C, CE, FF, FF, E9, 67, FD, FF, FF, CC, CC, CC, 48, 73, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 1A, 75, 00, 00, 68, 30, 00, 00, E0, 72, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 5E, 76, 00, 00...
 
[+]

Entropy:
5.9845

Code size:
9.5 KB (9,728 bytes)

Scan scred_wlh_amd64.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.