» DaShenAudio.sys
Overview
Analysis
File Details
Behaviors (1)

DaShenAudio.sys

DaShen Audio Filter Driver (DaShen Copyright)

KUNSHAN MOYEA SOFTWARE CO.,LTD

It runs as a Windows 64-bit kernel mode device driver named “DaShen Audio Filter Driver (DaShen Copyright)”.

File name:

DaShenAudio.sys

Publisher:

DaShen Development Team (signed by KUNSHAN MOYEA SOFTWARE CO.,LTD)

Product:

DaShen Audio Filter Driver (DaShen Copyright)

Description:

DaShen Virtual Audio Device

Version:

1.0

MD5:

4ea44d624a331149c05eae94486d0c1a

SHA-1:

6af7a01a14676929ec0c773042dc4e1e8fa09300

SHA-256:

ea6c10d394cf4b65fe52eaba698c898f8ccfd621856aa89f04267720c8a4aeeb

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/19/2024 12:01:36 AM UTC (today)

File size:

30.3 KB (31,024 bytes)

Product version:

1.0

Original file name:

DaShenAudio.sys

File type:

Driver (Win64 SYS)

Language:

English (United States)

Common path:

C:\Windows\System32\drivers\dashenaudio.sys

Digital Signature

Signed by:

KUNSHAN MOYEA SOFTWARE CO.,LTD

Authority:

GlobalSign nv-sa

Valid from:

5/25/2012 5:47:00 PM

Valid to:

7/31/2013 3:35:40 PM

Subject:

CN="KUNSHAN MOYEA SOFTWARE CO.,LTD", OU=Development Department, O="KUNSHAN MOYEA SOFTWARE CO.,LTD", L=苏州, S=江苏, C=CN

Issuer:

CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:

1121D528990816ABCA43A2DD40D0C7DA41B0

File PE Metadata

OS bitness:

Win64

CTPH (ssdeep):

768:l+56eiMYCbzSXfi1BYEZ5LUq9Fbj8vd1b5hPSJdf/iR6:Ma2PFJLSRhP+5i4

Entry point:

48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, 72, FF, FF, FF, CC, CC, D8, 90, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 98, 94, 00, 00, 00, 30, 00, 00, D8, 91, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 82, 95, 00, 00, 00, 31, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 30, 92, 00, 00, 00, 00, 00, 00, 3E, 92, 00, 00, 00, 00, 00, 00, 56, 92, 00, 00, 00, 00, 00, 00, 6A, 92, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

5.9786

Driver

Display name:

DaShen Audio Filter Driver (DaShen Copyright)

Service name:

DaShenAudio_simple

Type:

Kernel device driver (KernelDriver)

Scan DaShenAudio.sys - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.