home

cbfs3.sys

Callback File System

EldoS Corporation

Publisher:
EldoS Corporation  (signed and verified)

Product:
Callback File System (TM)

Description:
Callback File System Driver

Version:
3, 2, 102, 251

MD5:
a219b2d5963497515348024cc1e38609

SHA-1:
c063324a816de8433a98216cf76c86393e4cb767

SHA-256:
3b74b4f60cd66afe8e51760496ba98cd53b44359c979ad9b6292cc99edb579cd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 8:56:31 AM UTC  (today)

File size:
785.9 KB (804,752 bytes)

Product version:
3, 2, 102, 14

Copyright:
Copyright (C) EldoS Corp. 2006-2011

Original file name:
cbfs3.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\ia64\cbfs3.sys

Digital Signature
Signed by:
EldoS Corporation

Authority:
GlobalSign nv-sa

Valid from:
1/11/2010 3:19:26 PM

Valid to:
1/11/2013 3:19:23 PM

Subject:
E=info@eldos.com, CN=EldoS Corporation, O=EldoS Corporation, C=VG

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
010000000001261DEC28F7

File PE Metadata
Compilation timestamp:
12/2/2011 5:32:10 PM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
6144:2lRWcXsdtNBPe7Uh7YR0XeU4SaVgfwC0xW0tzUBkMYSMEFqo+ZJJm7y9hBzSwCOx:DNBPeoh7YRfKfxFi7KQbu4I/qLJi7yr

Entry address:
0x1E020

Entry point:
20, 6D, 0D, 00, 00, 00, 00, 00, 00, C0, 23, 00, 00, 00, 00, 00, A0, DE, 0A, 00, 00, 00, 00, 00, 00, C0, 23, 00, 00, 00, 00, 00, 80, DD, 0A, 00, 00, 00, 00, 00, 00, C0, 23, 00, 00, 00, 00, 00, 60, BC, 0A, 00, 00, 00, 00, 00, 00, C0, 23, 00, 00, 00, 00, 00, 00, 4D, 01, 00, 00, 00, 00, 00, 00, C0, 23, 00, 00, 00, 00, 00, 60, 0F, 0A, 00, 00, 00, 00, 00, 00, C0, 23, 00, 00, 00, 00, 00, E0, EA, 09, 00, 00, 00, 00, 00, 00, C0, 23, 00, 00, 00, 00, 00, 40, E2, 09, 00, 00, 00, 00, 00, 00, C0, 23, 00, 00, 00, 00, 00...
 
[+]

Code size:
659 KB (674,816 bytes)

Scan cbfs3.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.