How to remove RTDriver.sys

» File
File Details
Overview
Analysis

RTDriver.sys

The module RTDriver.sys has been detected as Rootkit.Gen

RTDriver.sys

Remove RTDriver.sys

File Details

Main Info:

MD5:	87193699bce68c4052add80bb9142f4e
Size:	12 KB
First Published:	2019-03-22 14:04:37 (5 years ago)
Latest Published:	2021-08-29 20:20:02 (2 years ago)

Analysis:

Status:	Rootkit.Gen (on last analysis)
Analysis Date:	2021-08-29 20:20:02 (2 years ago)

Overview

Digital Signature

Signed By:	上海域联软件技术有限公司
Status:	Valid

Common Places:

%system%

%system%

%system%

%system%

%system%

%system%

%system%

%system%

%system%

%system%

Geography:

	13.0%
	10.1%
	9.4%
	8.7%
	5.8%
	5.8%
	4.3%
	4.3%
	4.3%
	2.9%
	2.9%
	2.9%
	2.9%
	2.2%
	2.2%
	2.2%
	2.2%
	1.4%
	1.4%
	1.4%
	1.4%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%

OS Version:

Windows 10	99.3%
Windows 8	0.7%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x00001184

PE Sections:

Name	Size of data	MD5
.text	2048	89973a1c106c60c888186bcd246842af
.rdata	1536	eadc06ecdca3aed4f0e4e6c2bd7e0a05
.data	512	6737052ef61422c4b1bbe94301013252
.pdata	512	5c944704cbe42303163b5345e7179708
INIT	1024	5223318d53ffa55921964084724557c0
.reloc	512	3fd3d20717f01b5ac016ee6927b590df

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for RTDriver.sys

copyright for information about RTDriver.sys