Information about AntiRK_ev.sys.bak_

AntiRK_ev.sys.bak_

File Details

Product Name:

TAntiRK
Company Name:

Tencent
MD5: c1dfb07e49753393eaec5f3e3d024be8
Size: 49 KB
First Published: 2017-05-22 11:22:50 (6 years ago)
Latest Published: 2018-07-23 12:12:47 (5 years ago)
Status: Undefined (on last analysis)
Analysis Date: 2018-07-23 12:12:47 (5 years ago)

Overview

Signed By: Tencent Technology(Shenzhen) Company Limited
Status: Valid

Common Places:

%programfiles%\tencent\qqpcmgr\12.5.18755.213
%programfiles%\tencent\qqpcmgr\11.8.17919.214\filegroupupdate\sections\9486
%programfiles%\qqpcmgr\12.3.18498.501
%programfiles%\tencent\qqpcmgr\12.5.18752.211
%programfiles%\tencent\qqpcmgr\12.3.18483.221
%programfiles%\tencent\qqpcmgr\12.4.18584.206\filegroupupdate\sectionsbackup\9609
%programfiles%\tencent\qqpcmgr\12.2.18329.219\filegroupupdate\sectionsbackup\9668
%programfiles%\tencent\qqpcmgr\11.0.16779.224\filegroupupdate\sectionsbackup\9609
%programfiles%\tencent\qqpcmgr\12.5.18752.211\filegroupupdate\sectionsbackup\9683
%programfiles%\tencent\qqpcmgr\12.5.18752.211\filegroupupdate\sectionsbackup\9609

File Names:

AntiRK_ev.sys
AntiRK_ev.sys.bak_

Geography:

35.5%
22.6%
12.9%
6.5%
3.2%
3.2%
3.2%
3.2%
3.2%
3.2%
3.2%

OS Version:

Windows 10 58.1%
Windows 8.1 22.6%
Windows 7 19.4%

Analysis

Subsystem: Native
PE Type: pe
OS Bitness: 32
Image Base: 0x00010000
Entry Address: 0x00006ebe

PE Sections:

Name Size of data MD5
.text 20608 3ebcee394df3a1c6176a1d7a60abdcdd
.rdata 1024 484484b00bb91e45982523f83b274fcf
.data 5504 9a62d398fb84ae456719265e2d325a52
INIT 1920 f0bbba12b8d7f3b059614a58ba2431e0
.rsrc 896 a0513388b31525407827a09f647f613f
.reloc 1152 557c54f61a00b622897ffb06956c92ce

More information:

Search on Virustotal
copyright for information about AntiRK_ev.sys.bak_