home

ArkVSSVol.sys

Ark Information Systems inc.

It runs as a Windows kernel mode device driver named “ArkVSSVol”.
Publisher:
Ark Information Systems inc.  (signed and verified)

Product:
ARK Information Systems Inc.

Description:
ArkVSSVol

Version:
1.0.0

MD5:
1f3b724a3d254542855f05e507a80e92

SHA-1:
4c2a777726f92f3089bf20899ce1838ebdf91196

SHA-256:
148b30f455e44ecac1f3983ac9ccc1533508a417015e5759f3d8e9c0036a9822

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/2/2024 7:36:50 AM UTC  (today)

File size:
21 KB (21,488 bytes)

Product version:
1.0.0

Copyright:
Copyright (C) 2014 ARK Information Systems Inc. All rights reserved.

Original file name:
ArkVSSVol.sys

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\arkvssvol.sys

Digital Signature
Signed by:
Ark Information Systems inc.

Authority:
DigiCert Inc

Valid from:
12/17/2015 9:00:00 AM

Valid to:
2/22/2017 9:00:00 PM

Subject:
CN=Ark Information Systems inc., O=Ark Information Systems inc., L=Chiyoda-ku, S=Tokyo, C=JP, PostalCode=102-0076, STREET=4-2 Go-bancho, SERIALNUMBER=0100 01 009637, OID.1.3.6.1.4.1.311.60.2.1.3=JP, OID.2.5.4.15=Private Organization

Issuer:
CN=DigiCert EV Code Signing CA (SHA2), OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0301D7C05F2DA0E0741922C4F7ED9051

File PE Metadata
Compilation timestamp:
7/20/2016 2:50:16 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

Entry address:
0x60AD

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 49, FF, FF, FF, CC, CC, CC, E8, 60, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, B2, 64, 00, 00, 00, 30, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 88, 61, 00, 00, 96, 61, 00, 00, AE, 61, 00, 00, C2, 61, 00, 00, CC, 61, 00, 00, DE, 61, 00, 00, F0, 61, 00, 00, 04, 62, 00, 00, 1C, 62, 00, 00, 34, 62, 00, 00, 44, 62, 00, 00, 5C, 62, 00, 00, 6A, 62, 00, 00, 7A, 62, 00, 00, 90, 62, 00, 00, A0, 62, 00, 00, AE, 62, 00, 00, BC...
 
[+]

Entropy:
6.1303

Code size:
7.5 KB (7,680 bytes)

Driver
Display name:
ArkVSSVol

Type:
Kernel device driver (KernelDriver)

Group:
System Bus Extender


Scan ArkVSSVol.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.