Information about windivert64.sys

» File
File Details
Overview
Analysis

windivert64.sys

File Details

Main Info:

Product Name:	WinDivert driver
Company Name:	Basil
MD5:	3c705d59a52a0f64b8d27c420fcdc037
Size:	37 KB
First Published:	2017-06-01 11:03:00 (6 years ago)
Latest Published:	2024-03-10 23:08:57 (2 months ago)

Analysis:

Status:	Undefined (on last analysis)
Analysis Date:	2024-03-10 23:08:57 (2 months ago)

Overview

Digital Signature

Signed By:	Nemea Mjukvaruutveckling AB
Status:	Valid

Common Places:

%windir%\syssecure\16.9.17.5

%windir%\syssecure

%localappdata%\free download manager\backup

%programfiles%\freedownloadmanager.org

%programfiles%\classroom spy pro\bin

%desktop%\artmoney pro 7.44 portable by kloneb@dguy\новая папка\goodbyedpi-0.0.7

%temp%

%windir%

%windir%\syssecure

File Names:

WinDivert64.sys

windivert64.sys

Geography:

	17.2%
	10.1%
	8.1%
	7.1%
	6.1%
	4.0%
	3.0%
	3.0%
	3.0%
	2.0%
	2.0%
	2.0%
	2.0%
	2.0%
	2.0%
	2.0%
	2.0%
	2.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%
	1.0%

OS Version:

Windows 10	67.0%
Windows 7	21.4%
Windows 8.1	11.7%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000000010000
Entry Address:	0x00004e04

PE Sections:

Name	Size of data	MD5
.text	17408	5a3cd4b1a2d58476c773e2c05f1b4c6e
.rdata	5632	3313ad7495e9f4e4d0b6c8e299c5d22e
.data	1536	b15f0bc49616facec6b14a4d0b6d05bf
.pdata	1024	6680e9868fc2bc5cb4c68fff12871a96
INIT	2048	c42bac8e02ef4c77764acfff4ed4740a
.rsrc	1024	858effe74713fecce15a7ea38e4dd7d5
.reloc	512	88aaa404fc784e85c33f7ab1e81c9501

More information:

Search on Virustotal

copyright for information about windivert64.sys

Information about windivert64.sys

windivert64.sys

File Details

Main Info:

WinDivert driver

Basil

Analysis:

Overview

Digital Signature

Common Places:

Geography:

OS Version:

Analysis

PE Info:

PE Sections:

More information: