dokan.sys

Windows Win 7 DDK driver

Bdrive Inc.

It runs as a Windows file system device driver named “Dokan_NetDrive2_NC15”.
Publisher:
Windows (R) Win 7 DDK provider  (signed by Bdrive Inc.)

Product:
Windows (R) Win 7 DDK driver

Description:
Dokan Filesystem Driver

Version:
6.1.7600.16385 built by: WinDDK

MD5:
f4b8c028b6e911d16df621eec2ca3ca5

SHA-1:
d165a7606b6bc3448ed6b55e9085aab4bfb5f4ea

SHA-256:
a200841aa48799bd4da30cdaeeba0661cf9946e5e63a893d6fc8fc97cf4a6476

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
9/24/2018 5:17:42 AM UTC  (today)

File size:
98.6 KB (100,928 bytes)

Product version:
6.1.7600.16385

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
dokan.sys

File type:
Driver (Win32 SYS)

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
4/2/2013 4:00:00 AM

Valid to:
6/2/2014 3:59:59 AM

Subject:
CN=Bdrive Inc., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Bdrive Inc., L=seocho, S=Seoul, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
41782614A8541CF1AC27335EB2447720

File PE Metadata
Compilation timestamp:
1/12/2014 1:34:28 AM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
1536:A3aootqrlhctYXV1OP96MflXVeRJE1B57M:Aqtc/CQAlXVEEbJ

Entry address:
0x14A45

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 3B, FD, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 5B, 44, 6F, 6B, 61, 6E, 46, 53, 5D, 20, 3C, 3D, 3D, 20, 44, 72, 69, 76, 65, 72, 45, 6E, 74, 72, 79, 0A, 00, CC, CC, CC, CC, CC, 5B, 44, 6F, 6B, 61, 6E, 46, 53, 5D, 20, 20, 20, 46, 73, 52, 74, 6C, 52, 65, 67, 69, 73, 74, 65, 72, 46, 69, 6C, 65, 53, 79, 73, 74, 65, 6D, 46, 69, 6C, 74, 65, 72, 43, 61, 6C, 6C, 62, 61, 63, 6B, 73, 20, 72, 65, 74, 75, 72, 6E, 65, 64, 20, 30, 78, 25, 78, 0A, 00, CC, CC, CC...
 
[+]

Entropy:
6.4593

Code size:
79.4 KB (81,280 bytes)

Driver
Display name:
Dokan_NetDrive2_NC15

Type:
File system 'filter' driver (FileSystemDriver)


Scan dokan.sys - Powered by Reason Core Security