How to remove RTDriver.sys

» File
File Details
Overview
Analysis

RTDriver.sys

The module RTDriver.sys has been detected as Rootkit.Gen

RTDriver.sys

Remove RTDriver.sys

File Details

Main Info:

MD5:	87193699bce68c4052add80bb9142f4e
Size:	12 KB
First Published:	2019-03-22 14:04:37 (5 years ago)
Latest Published:	2021-08-29 20:20:02 (3 years ago)

Analysis:

Status:	Rootkit.Gen (on last analysis)
Analysis Date:	2021-08-29 20:20:02 (3 years ago)

Overview

Digital Signature

Signed By:	上海域联软件技术有限公司
Status:	Valid

Common Places:

%system%

%system%

%system%

%system%

%system%

%system%

%system%

%system%

%system%

%system%

Geography:

Egypt	13.0%
Turkey	10.1%
Thailand	9.4%
India	8.7%
Vietnam	5.8%
Russia	5.8%
Indonesia	4.3%
Palestine	4.3%
Pakistan	4.3%
Saudi Arabia	2.9%
Kuwait	2.9%
Iraq	2.9%
Sri Lanka	2.9%
Ukraine	2.2%
Israel	2.2%
Brazil	2.2%
United Arab Emirates	2.2%
Morocco	1.4%
Philippines	1.4%
Poland	1.4%
Croatia	1.4%
Australia	0.7%
Jordan	0.7%
Nepal	0.7%
Greece	0.7%
United States	0.7%
Slovakia	0.7%
Syria	0.7%
Kazakhstan	0.7%
Nigeria	0.7%
Algeria	0.7%
Argentina	0.7%

OS Version:

Windows 10	99.3%
Windows 8	0.7%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x00001184

PE Sections:

Name	Size of data	MD5
.text	2048	89973a1c106c60c888186bcd246842af
.rdata	1536	eadc06ecdca3aed4f0e4e6c2bd7e0a05
.data	512	6737052ef61422c4b1bbe94301013252
.pdata	512	5c944704cbe42303163b5345e7179708
INIT	1024	5223318d53ffa55921964084724557c0
.reloc	512	3fd3d20717f01b5ac016ee6927b590df

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for RTDriver.sys

copyright for information about RTDriver.sys