How to remove dfx11_1x64.sys
- File Details
- Overview
- Analysis
dfx11_1x64.sys
The module dfx11_1x64.sys has been detected as Virtool.ShadowBrokers
File Details
Product Name: |
|
Company Name: |
|
MD5: |
51d50a9a72c18e4629891bf381d123ba |
Size: |
27 KB |
First Published: |
2017-07-14 11:16:46 (7 years ago) |
Latest Published: |
2019-11-12 17:09:40 (5 years ago) |
Status: |
Virtool.ShadowBrokers (on last analysis) |
|
Analysis Date: |
2019-11-12 17:09:40 (5 years ago) |
Overview
%programfiles%\dfx\universal\drivers\bootstrap |
%programfiles%\dfx\universal\drivers |
%system% |
|
25.0% |
|
|
25.0% |
|
|
16.7% |
|
|
8.3% |
|
|
8.3% |
|
|
8.3% |
|
|
8.3% |
|
Windows 7 |
58.3% |
|
Windows 10 |
41.7% |
|
Analysis
Subsystem: |
Native |
PE Type: |
pe |
OS Bitness: |
64 |
Image Base: |
0x0000000000010000 |
Entry Address: |
0x00007078 |
Name |
Size of data |
MD5 |
.text |
3584 |
82f5af32f328d388df5024f9b45fd1d4 |
.rdata |
2560 |
676fe266c0e329155bf66578a58d846f |
.data |
3072 |
4fae52c265bb935015181a9cab531e42 |
.pdata |
512 |
daf4ef02562db42ea413b7747801580a |
PAGE |
7168 |
fd061ee7fedeeeefd0181f2df9f55c73 |
INIT |
1024 |
37992a5a8fb80ed493ea10d11cd32030 |
.rsrc |
1024 |
bec06307cfecaee8e2219773c4cf4ca4 |
.reloc |
512 |
184bd3a57f278163e2d895c1dde18ab4 |