home

ccbootpnp.sys

Youngzsoft Co., Ltd.

It runs as a Windows kernel mode device driver named “CCBootPnP Driver”.
Publisher:
Youngzsoft Co., Ltd.  (signed and verified)

MD5:
8ff16374d0ef0d9b751bb3de406a7449

SHA-1:
42754a80f02278db65c188fe033e39e3536bd6fc

SHA-256:
178107d5a1c3e3079b856a6b6ff31437d853352f888663aecfa471a686584b2a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 5:04:19 AM UTC  (today)

File size:
36 KB (36,904 bytes)

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\ccbootpnp.sys

Digital Signature
Signed by:
Youngzsoft Co., Ltd.

Authority:
VeriSign, Inc.

Valid from:
4/17/2014 8:00:00 AM

Valid to:
4/18/2015 7:59:59 AM

Subject:
CN="Youngzsoft Co., Ltd.", OU=Software Development, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Youngzsoft Co., Ltd.", L=Changsha, S=Hunan, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3100D378FD898D4DA76C9FCBA2E349F7

File PE Metadata
Compilation timestamp:
7/28/2014 10:48:29 AM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
384:ab75sIAuwOKyfVSTXJ0ssDiSAhe70/BcF/BYEuKd46nYPLKBCBUHeMse:clsIFKySX2ssDiSF70p2p9uKG6Se

Entry address:
0x64BE

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, B0, CF, FF, FF, CC, CC, F8, 64, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 70, 6A, 00, 00, 80, 5B, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, F0, 65, 00, 00, FE, 65, 00, 00, 0C, 66, 00, 00, 20, 66, 00, 00, 36, 66, 00, 00, 42, 66, 00, 00, 5A, 66, 00, 00, 6C, 66, 00, 00, 76, 66, 00, 00, 86, 66, 00, 00, 9C, 66, 00, 00, B4, 66, 00, 00, CC, 66, 00, 00, DE, 66, 00, 00, F0, 66, 00, 00, FC, 66, 00, 00, 0C, 67, 00, 00, 16, 67...
 
[+]

Entropy:
6.3750

Code size:
23.3 KB (23,808 bytes)

Driver
Display name:
CCBootPnP Driver

Service name:
CCBootPnP

Type:
Kernel device driver (KernelDriver)

Group:
Boot Bus Extender


Scan ccbootpnp.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.