Information about TFsFlt_ev.sys

» File
File Details
Overview
Analysis

TFsFlt_ev.sys

File Details

Main Info:

Product Name:	电脑管家
Company Name:	电脑管家
MD5:	61b017f5a619edbe701732508bf5b915
Size:	154 KB
First Published:	2017-11-05 04:06:42 (7 years ago)
Latest Published:	2021-09-21 20:35:02 (3 years ago)

Analysis:

Status:	Undefined (on last analysis)
Analysis Date:	2021-09-21 20:35:02 (3 years ago)

Overview

Digital Signature

Signed By:	TENCENT TECHNOLOGY(SHENZHEN) COMPANY LIMITED
Status:	Valid

Common Places:

%programfiles%\tencent\qqpcmgr\12.10.19212.207\filemon\i386

%programfiles%\tencent\qqpcmgr\12.10.19266.225\filemon

%programfiles%\tencent\qqpcmgr\12.10.19269.226\filemon

%programfiles%\tencent\qqpcmgr\12.10.19212.207\filemon

%programfiles%\tencent\qqpcmgr\12.10.19264.224\filemon

%programfiles%\tencent\qqpcmgr\12.12.19416.211\filemon

%programfiles%\tencent\qqpcmgr\12.11.19347.501\filemon

%programfiles%\tencent\qqpcmgr\12.11.19357.218\filemon

%programfiles%\tencent\qqpcmgr\12.10.19263.223\filemon

%programfiles%\tencent\qqpcmgr\12.11.19324.209\filemon

Geography:

China	41.8%
Taiwan	25.3%
Hong Kong	13.2%
United States	6.6%
Malaysia	3.3%
Vietnam	2.2%
Canada	1.1%
Turkey	1.1%
Singapore	1.1%
Macau	1.1%
Cambodia	0.5%
Trinidad and Tobago	0.5%
Saudi Arabia	0.5%
Japan	0.5%
Philippines	0.5%
South Korea	0.5%

OS Version:

Windows 10	68.3%
Windows 7	16.4%
Windows Server 2012 R2	8.2%
Windows Server 2008 R2	3.8%
Windows XP	1.1%
Windows 8.1	1.1%
Windows 8	1.1%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	32
Image Base:	0x00010000
Entry Address:	0x0001fead

PE Sections:

Name	Size of data	MD5
.text	54784	9a6b603e1c7b417db3e65800b4447dd5
.rdata	2816	0223d25b32f519d6feaca6cfd135715b
.data	67712	19d8eacedb36bd2a27a155133edd57de
PAGE	3072	382a94a82d5e4e46c20b34a3e44ae4cf
INIT	6400	3dba892a7ecc0ab2f520998c928bd221
.rsrc	896	5ea9f7307d102bf1ebc4d9294588e6ac
.reloc	4608	053c6a72d72d4f95949143d06b8cafee

More information:

Search on Virustotal

copyright for information about TFsFlt_ev.sys