Information about AntiRK.sys

» File
File Details
Overview
Analysis

AntiRK.sys

File Details

Main Info:

Product Name:	TAntiRK
Company Name:	Tencent
MD5:	f728d2ea2e010f2461600bbb2fa70b1d
Size:	35 KB
First Published:	2017-06-10 02:04:20 (6 years ago)
Latest Published:	2018-07-17 09:11:35 (5 years ago)

Analysis:

Status:	Undefined (on last analysis)
Analysis Date:	2018-07-17 09:11:35 (5 years ago)

Overview

Digital Signature

Signed By:	Tencent Technology(Shenzhen) Company Limited
Status:	Valid

Common Places:

%programfiles%\tencent\qqpcmgr\10.8.16208.227\filegroupupdate\sectionsbackup\9609

%programfiles%\tencent\qqpcmgr\10.8.16208.227\filegroupupdate\sectionsbackup\9246

%programfiles%\tencent\qqpcmgr\10.8.16208.227

%sysdrive%\adwcleaner\quarantine\xrpmcarcr4\qqpcmgr

%programfiles%\tencent\qqpcmgr\10.8.16208.227\filegroupupdate\sectionsbackup

%programfiles%\tencent\qqpcmgr

File Names:

AntiRK.sys.bak_

AntiRK.sys

Geography:

	30.8%
	23.1%
	15.4%
	7.7%
	7.7%
	7.7%
	7.7%

OS Version:

Windows 7	38.5%
Windows 8.1	38.5%
Windows XP	7.7%
Windows 10	7.7%
Windows Server 2012 R2	7.7%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	32
Image Base:	0x00010000
Entry Address:	0x00005dbe

PE Sections:

Name	Size of data	MD5
.text	16384	f80b01bc9bb85e1ed59f1049c58dd08f
.rdata	896	4d2783f5ff24265db1e42c4ba417aa67
.data	5504	69e221841bb5669858dc8a2f00082bd7
INIT	1536	bad06bef2e6025225d56ad42820002ce
.rsrc	896	038408dc5cb2da340a77b5c80667776f
.reloc	896	f0ee31a12f4799fb621df96fcabea6b2

More information:

Search on Virustotal

copyright for information about AntiRK.sys