» unhackmedrv.sys
Overview
Analysis
File Details
Programs (1)

unhackmedrv.sys

UnHackme

Greatis Software, LLC

This is installed with RegRun Security Suite Platinum.

File name:

unhackmedrv.sys

Publisher:

Greatis Software, LLC. (signed by Greatis Software, LLC)

Product:

UnHackme

Description:

UnHackMe Kernel Driver

Version:

5.00.2195.1620

MD5:

017ab040d0bbea5657ffbae3f5e1f9d7

SHA-1:

63105f18c432664f2fc14a913f60869c7b4c76b8

SHA-256:

d067bd9a87e004fe38c5925687d50bf789f45281a835042cbfed223e2223b10d

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/26/2024 5:09:43 PM UTC (today)

File size:

12.5 KB (12,752 bytes)

Product version:

5.00.2195.1620

Original file name:

unhackmedrv.sys

File type:

Driver (Win32 SYS)

Language:

English (United States)

Common path:

C:\Program Files\greatis\regrunsuite\unhackmedrv.sys

Digital Signature

Signed by:

Greatis Software, LLC

Authority:

The USERTRUST Network

Valid from:

11/23/2008 6:00:00 PM

Valid to:

11/24/2010 5:59:59 PM

Subject:

CN="Greatis Software, LLC", O="Greatis Software, LLC", STREET="1-65, Turgeneva", L=Yaroslavl, S=Yaroslavl, PostalCode=150054, C=RU

Issuer:

CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:

4B5179A3ECC3D3E2BE18F660088FE088

File PE Metadata

Compilation timestamp:

4/3/2005 6:02:10 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Native (none required)

Linker version:

6.0

CTPH (ssdeep):

192:Ht9dBNDB+5+U0/bhV1W13ktxbBvzsyfnbDWpMgdcYdKmnyMTCtwZPg2YbwM:NvAsbhV1WmjNv9n3kM2c+aMIwM

Entry address:

0x8E8

Entry point:

55, 8B, EC, 51, 51, 53, 33, DB, 56, 8B, 75, 08, 8D, 45, F8, 53, 50, 8D, 45, 08, 50, 8D, 45, FC, 50, C7, 46, 34, CA, 08, 01, 00, E8, DB, 00, 00, 00, 83, 7D, FC, 05, 0F, 85, 93, 00, 00, 00, 39, 5D, 08, 75, 7E, C7, 05, A0, 0B, 01, 00, 01, 00, 00, 00, 57, 6A, 1B, 8D, 7E, 38, 59, B8, DC, 07, 01, 00, 56, F3, AB, E8, 1F, FF, FF, FF, 3B, C3, 5F, 0F, 85, 93, 00, 00, 00, FF, 15, 04, 0A, 01, 00, 8A, D8, E8, 0C, FA, FF, FF, 50, A3, 98, 0B, 01, 00, E8, 24, FC, FF, FF, 56, A3, 9C, 0B, 01, 00, E8, 5A, F9, FF, FF, A3, 94... 
[+]

Entropy:

6.1829

Developed / compiled with:

Microsoft Visual C++

Code size:

2.4 KB (2,464 bytes)

The file unhackmedrv.sys has been discovered within the following programs.

RegRun Security Suite Platinum by Greatis Software

www.regrun.com

About 9% of users remove it

Scan unhackmedrv.sys - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.