home

vs5n8dur.007

BitRaider Streaming System

BitRaider

Publisher:
BitRaider  (signed and verified)

Product:
BitRaider Streaming System

Description:
BitRaider WISDA 32-Bit Filter Driver

Version:
1.3.1.1 built by: WinDDK

MD5:
4c89633956cc67e8c8f7833d6d07d203

SHA-1:
d7a0c1809147b6ab244652a4cd1242ca9419f5c9

SHA-256:
87e983e77c3f9d33762c4dfbc8b9991119150391e43cf8ac489cd1904d6b1fe3

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 7:18:42 PM UTC  (today)

File size:
1.3 MB (1,382,216 bytes)

Product version:
1.3.1.1

Copyright:
Copyright 2014 (c) BitRaider. All rights reserved.

Original file name:
BRDriver.sys

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\vs5n8dur.007

Digital Signature
Signed by:
BitRaider

Authority:
VeriSign, Inc.

Valid from:
7/23/2013 12:00:00 AM

Valid to:
7/23/2014 11:59:59 PM

Subject:
CN=BitRaider, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=BitRaider, L=Jacksonville, S=Florida, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6CAFDD6A6CE3079C9245AE4C99C5198A

File PE Metadata
Compilation timestamp:
4/25/2014 6:13:48 AM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
24576:WeytXFvNDWu6ghrSMJecuN6yFamSi5l5d6E65xY3CjT:DgXFv3hrzJecuNfFaml5lD3a

Entry address:
0x1003E

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 86, 32, FF, FF, CC, CC, 80, 01, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 54, 04, 01, 00, E0, C0, 00, 00, A0, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 4E, 09, 01, 00, 00, C0, 00, 00, 70, 01, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 32, 10, 01, 00, D0, C0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 2C, 05, 01, 00, 9E, 07, 01, 00, 88, 07, 01, 00, 68, 07, 01, 00, 30, 09, 01, 00, 14, 09, 01, 00, FE, 08, 01, 00, E6, 08...
 
[+]

Entropy:
5.8680

Code size:
48.5 KB (49,664 bytes)

Scan vs5n8dur.007 - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.