home

2bb3vudvn.sys

Xtreaming Technology Inc.

Publisher:
Xtreaming Technology Inc.  (signed and verified)

MD5:
a7421f35a138a5c390e4a7dbdfa3456c

SHA-1:
adb68a102abab5bcc2d2b224d1490f352e0a05ea

SHA-256:
bacdff87cd2525b93c28eb044744af2671fb5b756cd0676b407fad2c74971d86

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 12:24:49 AM UTC  (today)

File size:
388.9 KB (398,224 bytes)

File type:
Driver (Win64 SYS)

Common path:
C:\windows\2bb3vudvn.sys

Digital Signature
Signed by:
Xtreaming Technology Inc.

Authority:
VeriSign, Inc.

Valid from:
2/22/2010 8:00:00 AM

Valid to:
2/23/2012 7:59:59 AM

Subject:
CN=Xtreaming Technology Inc., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Xtreaming Technology Inc., L=Taichung, S=Taiwan, C=TW

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
11EA9B47EDC53577340FA14E147E9132

File PE Metadata
Compilation timestamp:
11/15/2016 5:22:46 PM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
12288:HGHPNUAvL5QsayyHlU8F54qozVakYkBplqCLcXd:8PNXj5QsKrqqozVaGxZ4d

Entry address:
0xFFDA4

Entry point:
E9, 0F, 18, 00, 00, 48, 83, C7, 01, E9, C5, FF, FF, FF, FF, 10, F5, 48, 09, C0, E9, 81, 38, 00, 00, 50, F0, 1F, FD, FD, 84, 57, 92, 65, ED, B4, 97, C2, 95, B0, 79, 4D, B1, 63, CD, C5, 3F, FD, 2D, 68, 01, 9C, BF, 05, 99, 12, 47, 17, 31, 36, 35, CA, 8A, A7, C0, DF, 7F, 4C, FD, 7D, 7A, A9, E5, D1, 18, 4E, 40, AE, 24, 46, D4, 5D, 5B, CE, 04, B9, E3, D3, 22, 15, D8, 96, 66, 97, 84, 7F, 0D, 0D, 91, D1, 91, DE, 02, 03, 97, AD, 04, 46, 66, A0, 93, EC, 94, 1E, 06, AC, 34, 05, 8D, 66, 30, F8, 85, C1, 48, D3, D2, 1D...
 
[+]

Entropy:
7.8974

Packer / compiler:
Xtreme-Protector v1.05

Code size:
84 KB (86,016 bytes)

Scan 2bb3vudvn.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.