Information about TAOKernel64.sys

» File
File Details
Overview
Analysis

TAOKernel64.sys

File Details

Main Info:

Company Name:	Tencent Technology(Shenzhen) Company Limited
MD5:	506fdffcf1f06a4fa9f67aefbed7f9f6
Size:	144 KB
First Published:	2017-05-22 09:02:56 (6 years ago)
Latest Published:	2020-08-28 06:54:02 (3 years ago)

Analysis:

Status:	Undefined (on last analysis)
Analysis Date:	2020-08-28 06:54:02 (3 years ago)

Overview

Digital Signature

Signed By:	Tencent Technology(Shenzhen) Company Limited
Status:	Valid

Common Places:

%appdata%\zhp\quarantine

%system%\drivers

%programfiles%\tencent\qqpcmgr\11.5.17490.219

%system%

%programfiles%\tencent\qqpcmgr

%system%

%system%

%programfiles%\tencent\qqpcmgr

%programfiles%\tencent\qqpcmgr

%programfiles%\tencent\qqpcmgr

Geography:

	16.7%
	16.7%
	16.7%
	11.1%
	11.1%
	11.1%
	11.1%
	5.6%

OS Version:

Windows 7	55.6%
Windows 10	27.8%
Windows 8.1	11.1%
Windows 8	5.6%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x0000a790

PE Sections:

Name	Size of data	MD5
.text	106496	28b423fb40f4219829a37b36cc5d7420
.rdata	5632	c39f3007939a4d4d46d4f602e3ccab2b
.data	5120	b89463f8f01104fcbb5109b026fc53ca
.pdata	4096	301794a845899a53b2678c6ce75c0b08
INIT	4608	fd1f5cd183fd23e9ba4966e649c7447b
.rsrc	1536	cecf3e9941c671d55ebd7041fadbe024
.reloc	512	0aa7ce570f3385ae75e65613c03f52a2

More information:

Search on Virustotal

copyright for information about TAOKernel64.sys