home

TRUINPROXY.SYS

Oullim TDI for Windows

Oullim Information Technology Corp

It runs as a Windows kernel mode device driver named “TruinProxy”.
Publisher:
Oullim  (signed by Oullim Information Technology Corp)

Product:
Oullim TDI for Windows

Description:
Oullim TDI Filter (Layered,NT5)

Version:
2.02.06.15 built by: WinDDK

MD5:
47347aa59251d588a1274b4ffe91ef0e

SHA-1:
5d27a2536ebcf19f91728bedf79d5d313890a643

SHA-256:
563a2c9aaba544d8df3b2d71e179ca97b1047962fc5f60c1f2e2f3efbfadc7c8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 12:15:16 PM UTC  (today)

File size:
21.8 KB (22,280 bytes)

Product version:
2.02.06.15

Copyright:
Copyright

Original file name:
TRUINPROXY.SYS

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\truinproxy.sys

Digital Signature
Signed by:
Oullim Information Technology Corp

Authority:
VeriSign, Inc.

Valid from:
7/11/2011 9:00:00 AM

Valid to:
9/9/2014 8:59:59 AM

Subject:
CN=Oullim Information Technology Corp, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Oullim Information Technology Corp, L=Songpa-gu, S=Seoul, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
42056490787AB561088D0B2535685B6D

File PE Metadata
Compilation timestamp:
11/24/2006 9:07:35 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
7.0

CTPH (ssdeep):
384:5DZqbNGMo4nZgF4zqxoRAMmrcFlcEj7RCNWk5PlLnk2PAy2yYJLssUHeMrfGRG:5Dcb/nS4QoCI8CGibLw

Entry address:
0xA40

Entry point:
56, 8B, 35, 80, 2B, 01, 00, 57, B8, D8, 2D, 01, 00, 68, D0, 2D, 01, 00, A3, DC, 2D, 01, 00, A3, D8, 2D, 01, 00, FF, D6, B8, E0, 2D, 01, 00, 68, C0, 2D, 01, 00, A3, E4, 2D, 01, 00, A3, E0, 2D, 01, 00, FF, D6, B8, C8, 2D, 01, 00, A3, CC, 2D, 01, 00, A3, C8, 2D, 01, 00, B8, B8, 2D, 01, 00, 68, A8, 2D, 01, 00, A3, BC, 2D, 01, 00, A3, B8, 2D, 01, 00, FF, D6, B8, B0, 2D, 01, 00, 68, AC, 2D, 01, 00, A3, B4, 2D, 01, 00, A3, B0, 2D, 01, 00, FF, D6, E8, 5E, 1E, 00, 00, 8B, 74, 24, 0C, 83, 66, 34, 00, 6A, 1C, 59, FF...
 
[+]

Entropy:
6.8012

Code size:
11 KB (11,264 bytes)

Driver
Display name:
TruinProxy

Type:
Kernel device driver (KernelDriver)


Scan TRUINPROXY.SYS - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.