Information about WR64.sys

» File
File Details
Overview
Analysis

WR64.sys

File Details

Main Info:

Product Name:	WinRing0
Company Name:	OpenLibSys.org
MD5:	d974b8d7090d75ef71fc5b3738857972
Size:	14 KB
First Published:	2022-04-18 23:15:16 (3 years ago)
Latest Published:	2025-01-29 23:02:43 (6 months ago)

Analysis:

Status:	Undefined (on last analysis)
Analysis Date:	2025-01-29 23:02:43 (6 months ago)

Overview

Digital Signature

Signed By:	Noriyuki MIYAZAKI
Status:	Invalid (digital signature could be stolen or file could be patched)

Common Places:

%appdata%\windows

%appdata%\windows

%appdata%\windows

%appdata%\windows

%appdata%\windows

Geography:

	20.0%
	20.0%
	20.0%
	20.0%
	20.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000000010000
Entry Address:	0x00005008

PE Sections:

Name	Size of data	MD5
.text	2048	1c3d5bb2285dafcf3b7746bf717c1a51
.rdata	512	08362d1269d5a5ef4e7560cab993590d
.data	512	043c46095689123e1f5be96c109c2f46
.pdata	512	077af14197899077aa36d2c72ba1773f
INIT	1024	ba375d2de342e7d7a93487a35ea5d36d
.rsrc	1024	5459c1fdb222b651d36692c4ca5df895

More information:

Search on Virustotal

copyright for information about WR64.sys