» dbk32.sys
Overview
Analysis
File Details
Behaviors (1)
Programs (1)

dbk32.sys

Cheat Engine

It runs as a Windows 64-bit kernel mode device driver named “CEDRIVER60”.

File name:

dbk32.sys

Publisher:

Cheat Engine (signed and verified)

MD5:

bdf524d8070963ad71aa5466fe29470f

SHA-1:

fd389b6958b587e15b57f29ad687a7b105ae73af

SHA-256:

c2c43c2abdd59fd9e72bb419689e8e960fb470fdd2274db931434cdfdbc318cf

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

4/26/2024 5:57:47 PM UTC (today)

Scan engine

Detection

Engine version

Trend Micro House Call

TROJ_GEN.F47V0802

7.2.21

File size:

80.5 KB (82,400 bytes)

File type:

Driver (Win64 SYS)

Common path:

C:\Program Files\cheat engine 6.3\dbk32.sys

Digital Signature

Signed by:

Cheat Engine

Authority:

GlobalSign nv-sa

Valid from:

3/25/2013 9:26:07 AM

Valid to:

7/22/2014 6:08:43 PM

Subject:

E=dark_byte@hotmail.com, CN=Cheat Engine, O=Cheat Engine, L=Eindhoven, S=Noord Brabant, C=NL

Issuer:

CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:

1121ECFEBA3F53102B741B7E1AEDB2501C7C

File PE Metadata

OS bitness:

Win64

CTPH (ssdeep):

768:RgI//fkDy8cxsDUB4t16kSXd3M5/+pv8Rsh3+19o/+gPOKhNbA6Dg4+iIrP1i:R9kDexCtpSX25/+pXhooTHzbXD+isP1i

Entry point:

8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 62, F5, FE, FF, CC, CC, 30, 10, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 3C, 17, 01, 00, A4, C9, 00, 00, 0C, 10, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, E6, 17, 01, 00, 80, C9, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, B8, 17, 01, 00, A2, 17, 01, 00, 94, 17, 01, 00, 86, 17, 01, 00, 72, 17, 01, 00, 5E, 17, 01, 00, 4A, 17, 01, 00, CE, 17, 01, 00, 00, 00, 00, 00, FA, 11, 01, 00, 06, 12, 01, 00, 22, 12, 01, 00, 3E, 12... 
[+]

Entropy:

5.6890

Driver

Display name:

CEDRIVER60

Type:

Kernel device driver (KernelDriver)

The file dbk32.sys has been discovered within the following program.

Cheat Engine 6.3 by Dark Byte

Publisher's description - “Cheat Engine is an open source tool designed to help you with modifying single player games running under window so you can make them harder or easier depending on your preference(e.”

www.cheatengine.org

About 1% of users remove it

Scan dbk32.sys - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.