How to remove OEM-DRV8.SYS
- File Details
- Overview
- Analysis
OEM-DRV8.SYS
The module OEM-DRV8.SYS has been detected as Trojan.Agent
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
36d6cf1281ccf63a9f49b9795803a3a3 |
| Size: |
27 KB |
| First Published: |
2017-05-26 15:05:26 (6 years ago) |
| Latest Published: |
2024-03-20 23:06:58 (a month ago) |
| Status: |
Trojan.Agent (on last analysis) |
|
| Analysis Date: |
2024-03-20 23:06:58 (a month ago) |
| %windir%\setup\scripts\activator\retail |
| %desktop%\активаторы windows 7\odin 1.3.7\drivers |
| %profile%\downloads\all activation 7\activators\odin 1.3.7 by secr9tos\drivers |
| %desktop%\винда\sources\$oem$\$$\setup\scripts\data |
| %profile%\downloads\ru-en_win7_sp1_x86-x64_18in1_activated_v4\sources\$oem$\$$\setup\scripts\data |
| %sysdrive%\windows.old\windows\setup\scripts\data |
| %sysdrive%\$windows.~bt\sources\$oem$\$$\setup\scripts\data |
| %programfiles%\all activation windows (7-8-10)\all activation\activators\odin 1.3.7 by secr9tos\drivers |
| %desktop%\up\back up\diversen\all.activation.windows.7-8-10.9.0\all activation windows\all activation\activators\odin 1.3.7 by secr9tos\drivers |
| %profile%\all activation\activators\odin 1.3.7 by secr9tos\drivers |
| oem-drv86.sys |
| OEM-DRV8.SYS |
| OEM-DRV86.SYS |
| A0145781.sys |
| A0146071.sys |
| A0001497.SYS |
| $R4XTCJO.sys |
| oem-drv86.sys.2018-9-20-13-47-39-33 |
| A0009074.sys |
| A0015097.sys |
| A0034930.sys |
|
39.4% |
|
|
15.5% |
|
|
5.6% |
|
|
2.5% |
|
|
2.3% |
|
|
2.3% |
|
|
2.1% |
|
|
1.9% |
|
|
1.6% |
|
|
1.4% |
|
|
1.4% |
|
|
1.4% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
0.9% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
| Windows 7 |
56.9% |
|
| Windows 10 |
36.1% |
|
| Windows 8.1 |
3.2% |
|
| Windows 8 |
1.9% |
|
| Windows XP |
1.2% |
|
| Windows Server 2008 R2 |
0.5% |
|
| Windows Server 2012 R2 |
0.2% |
|
Analysis
| Subsystem: |
Native |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00010000 |
| Entry Address: |
0x0000b0f4 |
| Name |
Size of data |
MD5 |
| .text |
8192 |
d3b47d74053423775186702bbe7b48e0 |
| .rdata |
512 |
6ee25de78256e69ef5c5717f613aceed |
| .data |
512 |
312651a6f76490d97aff95c683a68247 |
| seg1 |
12800 |
494d6031b0ad9e809262e582b568036b |
| seg2 |
512 |
560a4d92d1bae4481fed6a05841b47ed |
| PAGE |
1024 |
93eaf4796dec89794fe3e600dce9266e |
| INIT |
1024 |
37a6b9706e8fb4c027a14035d2327ee8 |
| .rsrc |
1536 |
279ce4b1ac1ed45a1248ecc22de3d771 |
| .reloc |
1024 |
69344ab819096345dcf3779e4c714c5f |
