| File Name | WinRing0x64.sys |
| File Type |
PE32+ executable (native) x86-64, for MS Windows
|
| Scanner Version | 1.0.217.174 |
| Database Version | 2025-06-01 06:00:22 UTC |
No threats detected by our scanner
| Hash Type | Value | Action |
|---|---|---|
| MD5 |
0c0195c48b6b8582fa6f6373032118da
|
|
| SHA1 |
d25340ae8e92a6d29f599fef426a2bc1b5217299
|
|
| SHA256 |
11bd2c9f9e2397c9a16e0990e4ed2cf0679498fe0fd418a3dfdac60b5c160ee5
|
|
| SHA512 |
ab28e99659f219fec553155a0810de90f0c5b07dc9b66bda86d7686499fb0ec5fddeb7cd7a3c5b77dccb5e865f2715c2d81f4d40df4431c92ac7860c7e01720d
|
|
| ImpHash |
d41fa95d4642dc981f10de36f4dc8cd7
|
| Image Base | 0x00010000 |
| Entry Point | 0x00015008 |
| Compilation Time | 2008-07-26 13:29:37 |
| Checksum | 0x00011908 (Actual: 0x00011908) |
| OS Version | 6.0 |
| PEiD Signatures |
PE32+ executable (native) x86-64, for MS Windows
|
| PDB Path | d:\hotproject\winring0\source\dll\sys\lib\amd64\WinRing0.pdb |
| Digital Signature | OK |
| Imports |
2 libraries
ntoskrnl, HAL |
| Exports | 0 functions |
| Resources | 1 Resources |
| Sections | 6 Sections |
| Comments | The modified BSD license |
| CompanyName | OpenLibSys.org |
| FileDescription | WinRing0 |
| FileVersion | 1.2.0.5 |
| InternalName | WinRing0.sys |
| LegalCopyright | Copyright (C) 2007-2008 OpenLibSys.org. All rights reserved. |
| OriginalFilename | WinRing0.sys |
| ProductName | WinRing0 |
| ProductVersion | 1.2.0.5 |
| Translation | 0x0411 0x04b0 |
| Name | Virtual Address | Virtual Size | Raw Size | Entropy | Characteristics | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
1,734 bytes | 2,048 bytes | 5.39 (Normal) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_NOT_PAGED|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
1C3D5BB2285DAFCF3B7746BF717C1A51 |
.rdata |
0x00002000 |
380 bytes | 512 bytes | 3.28 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_NOT_PAGED|IMAGE_SCN_MEM_READ
|
08362D1269D5A5EF4E7560CAB993590D |
.data |
0x00003000 |
276 bytes | 512 bytes | 0.30 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_NOT_PAGED|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
043C46095689123E1F5BE96C109C2F46 |
.pdata |
0x00004000 |
96 bytes | 512 bytes | 0.86 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_NOT_PAGED|IMAGE_SCN_MEM_READ
|
077AF14197899077AA36D2C72BA1773F |
INIT |
0x00005000 |
546 bytes | 1,024 bytes | 3.06 (Normal) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
BA375D2DE342E7D7A93487A35EA5D36D |
.rsrc |
0x00006000 |
960 bytes | 1,024 bytes | 3.13 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
5459C1FDB222B651D36692C4CA5DF895 |
| Resource Type | Count | Total Size | Percentage |
|---|---|---|---|
| RT_VERSION | 1 | 860 bytes |
| Product | WinRing0 |
| Description | WinRing0 |
| File Version | 1.2.0.5 |
| Original Name | WinRing0.sys |
| Signing Date | 01:30 PM 07/26/2008 (6155 days ago) |
| Verification Status | Signed |
| Signers | Noriyuki MIYAZAKI; GlobalSign ObjectSign CA; GlobalSign Primary Object Publishing CA; GlobalSign Root CA - R1 |
| Counter Signers | GlobalSign Time Stamping Authority; GlobalSign RootSign Partners CA; GlobalSign Root CA - R1 |
| Internal Name | WinRing0.sys |
| Copyright | Copyright (C) 2007-2008 OpenLibSys.org. All rights reserved. |
01 00 00 00 00 01 15 37 24 21 A804 00 00 00 00 00 F9 7F AA 2E 1E04 00 00 00 00 01 08 D9 61 1C D604 00 00 00 00 01 10 92 EB 82 9504 00 00 00 00 01 08 D9 61 24 4861 0B 7F 6B 00 00 00 00 00 19✓ This file has been digitally signed and the certificate chain has been verified
OK
Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:
Download Anti-MalwareThis file appears clean, but regular security maintenance is important
