» DptfManager.sys
Overview
Analysis
File Details
Behaviors (1)

DptfManager.sys

Intel Dynamic Platform & Thermal Framework

UMG - MDFLD Drivers

It runs as a Windows 64-bit kernel mode device driver named “DptfManager”.

File name:

DptfManager.sys

Publisher:

Intel Corporation (signed by UMG - MDFLD Drivers)

Product:

Intel Dynamic Platform & Thermal Framework

Description:

Intel Dynamic Platform & Thermal Framework Manager Driver

Version:

07.1.0.164

MD5:

fc6942d26b8e279190f345dd81c3c28c

SHA-1:

79c4c0184c44b5f414afe7a5d456a0066393b7da

SHA-256:

9a268da0660cb60c7d2c9a4dd24a425d136ac0b01cbf29e643b11584b00fcba9

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/19/2024 9:15:07 AM UTC (today)

File size:

229.2 KB (234,736 bytes)

Product version:

07.1.0.164

Original file name:

DptfManager.sys

File type:

Driver (Win64 SYS)

Language:

English (United States)

Common path:

C:\Windows\System32\drivers\dptfmanager.sys

Digital Signature

Signed by:

UMG - MDFLD Drivers

Authority:

Intel Corporation

Valid from:

10/14/2011 11:38:56 PM

Valid to:

9/28/2014 11:38:56 PM

Subject:

CN=UMG - MDFLD Drivers

Issuer:

CN=Intel External Basic Issuing CA 3A, O=Intel Corporation, C=US

Serial number:

20435C4D00010000711B

File PE Metadata

Compilation timestamp:

1/10/2014 6:42:21 PM

OS version:

6.3

OS bitness:

Win64

Subsystem:

Native (none required)

Linker version:

11.0

CTPH (ssdeep):

6144:7R6+C7BikSbmFJvRyS7RdTJifpQwFV0wrp3ad9:iImFJZ/TJKpP0wg

Entry address:

0x2C068

Entry point:

48, 89, 5C, 24, 08, 57, 48, 83, EC, 20, 48, 8B, DA, 48, 8B, F9, E8, 83, DF, 00, 00, 48, 8B, D3, 48, 8B, CF, 48, 8B, 5C, 24, 30, 48, 83, C4, 20, 5F, E9, 02, 00, 00, 00, CC, CC, 48, 89, 5C, 24, 08, 48, 89, 6C, 24, 10, 48, 89, 74, 24, 18, 57, 48, 83, EC, 20, 33, ED, 48, 8B, F2, 48, 8B, F9, 48, 85, C9, 75, 0A, E8, 06, 99, FF, FF, E9, E0, 00, 00, 00, 48, 89, 0D, 52, A2, 00, 00, 48, 8D, 05, 63, A2, 00, 00, 48, 8D, 0D, 64, A4, 00, 00, 48, 89, 05, 65, A4, 00, 00, C7, 05, 53, A4, 00, 00, 00, 00, 08, 02, FF, 15, 65... 
[+]

Entropy:

6.2758

Code size:

187.5 KB (192,000 bytes)

Driver

Display name:

DptfManager

Type:

Kernel device driver (KernelDriver)

Scan DptfManager.sys - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.