home

{21769883-19ae-4dd9-b522-3613333c3df7}gw64.sys

Malwarebytes Corporation

Publisher:
Malwarebytes Corporation  (signed and verified)

MD5:
d2f1f4b9f77f9a1e569635b67c28c450

SHA-1:
d95eb28761c8e279d43bc747ff7ed13c0b00adda

SHA-256:
29f6691b9c42ef685661773c0ef35a10507a821f288744723a7dbc511bbcd4d8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 9:52:53 PM UTC  (today)

File size:
47.7 KB (48,824 bytes)

File type:
Driver (Win64 SYS)

Common path:
C:\Windows\System32\drivers\{21769883-19ae-4dd9-b522-3613333c3df7}gw64.sys

Digital Signature
Signed by:
Malwarebytes Corporation

Authority:
VeriSign, Inc.

Valid from:
4/30/2013 12:00:00 AM

Valid to:
6/19/2016 11:59:59 PM

Subject:
CN=Malwarebytes Corporation, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Malwarebytes Corporation, L=San Jose, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6F36C4B74B4F8AB001F039D692A75B49

File PE Metadata
Compilation timestamp:
8/2/2013 10:22:18 PM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
768:Cc7zEBjy1JlDMVGVXUXjf4AoWZe0uK4j+1lXl/49YrjkOZbReLhsSfB:CozSgnMU2n9lwJmW

Entry address:
0x6124

Entry point:
48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, C6, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 4D, 42, 41, 4D, 2D, 4E, 55, 4C, 4C, 21, 4D, 42, 41, 4D, 20, 4E, 55, 4C, 4C, 20, 64, 72, 69, 76, 65, 72, 20, 31, 2E, 30, 0A, 00, 98, 61, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 7E, 63, 00, 00, 00, 20, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 28, 62, 00, 00, 00, 00, 00, 00, 40, 62, 00, 00...
 
[+]

Code size:
3.5 KB (3,584 bytes)

Scan {21769883-19ae-4dd9-b522-3613333c3df7}gw64.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.