home

dglvrwddm.sys

TWOMON Display WDDM Kernel Mode Driver

DEVGURU CO LTD

It runs as a Windows kernel mode device driver named “DGLVRWDDM”.
Publisher:
DEVGURU Co., LTD.(www.devguru.co.kr)  (signed by DEVGURU CO LTD)

Product:
TWOMON Display WDDM Kernel Mode Driver

Version:
2.0.33.0

MD5:
6657bb11cef64ff877ce2d570e71f186

SHA-1:
bb5fae89880362363cacbb6853b0b6a0db5b2e1b

SHA-256:
7e893f233e132e0b9b6384cc9a8cf90f027c5a8b41cd1692eb682058680850c5

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 5:25:24 PM UTC  (today)

File size:
47.8 KB (48,896 bytes)

Product version:
2.0.33.0

Copyright:
Copyright (c) DEVGURU 2002-2014. (www.devguru.co.kr)

Original file name:
dglvrwddm.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\dglvrwddm.sys

Digital Signature
Signed by:
DEVGURU CO LTD

Authority:
VeriSign, Inc.

Valid from:
9/27/2013 7:00:00 AM

Valid to:
10/27/2016 6:59:59 AM

Subject:
CN=DEVGURU CO LTD, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=DEVGURU CO LTD, L=Geumcheon-gu, S=Seoul, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
63E1989CF4AE5350298FA168D0921309

File PE Metadata
Compilation timestamp:
12/18/2015 3:45:54 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
768:nry2OkXmkVLpRQnpMX0l9Ix1wa4Y6PN410XtrDnYp/y0Raq88NH72/UOHlA4MGTv:r9mkVrQnpMX0l9Ix1wa4Y6PN410XtrDv

Entry address:
0xC03E

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, C2, 4F, FF, FF, CC, CC, 98, C0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 28, C3, 00, 00, 0C, 90, 00, 00, 8C, C0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 6A, C3, 00, 00, 00, 90, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 56, C3, 00, 00, 42, C3, 00, 00, 00, 00, 00, 00, 44, C1, 00, 00, 5C, C1, 00, 00, 7A, C1, 00, 00, 8C, C1, 00, 00, A0, C1, 00, 00, B4, C1, 00, 00, CE, C1, 00, 00, DE, C1, 00, 00, EE, C1, 00, 00, 00, C2...
 
[+]

Entropy:
6.3745

Code size:
32.5 KB (33,280 bytes)

Driver
Display name:
DGLVRWDDM

Type:
Kernel device driver (KernelDriver)

Group:
Video


Scan dglvrwddm.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.