home

atitray64.sys

Ray Adams

It runs as a Windows 64-bit kernel mode device driver named “atitray”.
Publisher:
Ray Adams  (signed and verified)

MD5:
f9cb21b4a54729301748b6ba052c49f9

SHA-1:
7aaacb9a17e791a1f1a209306ba5359efe9ca8c5

SHA-256:
1f2fc5fbd0886e5c876cd77d41bda9f1c9523110c21fad499d30dc2222bb18f3

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/16/2024 12:17:40 PM UTC  (today)

File size:
23.2 KB (23,712 bytes)

File type:
Driver (Win64 SYS)

Common path:
C:\Program Files\ray adams\ati tray tools\atitray64.sys

Digital Signature
Signed by:
Ray Adams

Authority:
Root Agency

Valid from:
3/11/2007 12:15:20 AM

Valid to:
1/1/2040 3:59:59 AM

Subject:
CN=Ray Adams, OU=Certification, O=Ray Adams, E=traytools@guru3d.com

Issuer:
CN=Root Agency

Serial number:
97BDC0749C0DC4814310774187270C3B

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
384:jfLYZE5KpVOBWBP3FJDHtDm4cJuByr5nTS5xNiouDxsazZ6pxZh0oQw60rDvopYq:oE5JBcF1NDmNJI5xNiocN6p3h5Q1GTob

Entry point:
48, 8B, 05, F1, E0, FF, FF, 49, B9, 32, A2, DF, 2D, 99, 2B, 00, 00, 48, 85, C0, 74, 05, 49, 3B, C1, 75, 2F, 4C, 8D, 05, D6, E0, FF, FF, 48, B8, 20, 03, 00, 00, 80, F7, FF, FF, 48, 8B, 00, 49, 33, C0, 49, B8, FF, FF, FF, FF, FF, FF, 00, 00, 49, 23, C0, 49, 0F, 44, C1, 48, 89, 05, AE, E0, FF, FF, 48, F7, D0, 48, 89, 05, AC, E0, FF, FF, E9, 93, 98, FF, FF, CC, CC, CC, B8, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 94, 83, 00, 00, 18, 50, 00, 00, A0, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, D8, 83, 00, 00...
 
[+]

Driver
Display name:
atitray

Type:
Kernel device driver (KernelDriver)


Scan atitray64.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.