home

duse.sys

MokaFive

moka5, Inc.

It runs as a Windows kernel mode device driver named “duse”.
Publisher:
Windows (R) Win 7 DDK provider  (signed by moka5, Inc.)

Product:
MokaFive

Description:
moka5 USB reliability driver

Version:
34156 @ Jan 06 2010 13:32:20 built by: WinDDK

MD5:
5d7b7625c45dbd3b6cc4940b30967f0d

SHA-1:
2258ebb0f3047c8178b688975bb1d24368fef24c

SHA-256:
7402feb40252b40fe37411b7db1c0e5281b84f125d8be244fcbc2862cdd319d9

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/20/2024 6:25:49 AM UTC  (today)

File size:
19.4 KB (19,832 bytes)

Product version:
2.6.34156.0

Copyright:
© moka5, Inc. All rights reserved.

Original file name:
duse.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\duse.sys

Digital Signature
Signed by:
moka5, Inc.

Authority:
GlobalSign nv-sa

Valid from:
4/20/2009 5:13:30 PM

Valid to:
4/20/2012 5:13:30 PM

Subject:
E=support@mokafive.com, CN="moka5, Inc.", O="moka5, Inc.", C=US

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
01000000000120C44B3B3A

File PE Metadata
Compilation timestamp:
1/7/2010 12:37:14 AM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
384:OJGRbbNNOBLrdtgisxQV+jCsm9n+ZOX7OtNE5Q:OJmbbNNsrd6ibcCZ+ZH

Entry address:
0x32EA

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 8C, FC, FF, FF, 5C, 00, 44, 00, 6F, 00, 73, 00, 44, 00, 65, 00, 76, 00, 69, 00, 63, 00, 65, 00, 73, 00, 5C, 00, 6D, 00, 35, 00, 64, 00, 75, 00, 73, 00, 65, 00, 25, 00, 64, 00, 00, 00, 5C, 00, 44, 00, 65, 00, 76, 00, 69, 00, 63, 00, 65, 00, 5C, 00, 44, 00, 55, 00, 53, 00, 45, 00, 53, 00, 52, 00, 56, 00, 25, 00, 64, 00, 00, 00, 5C, 00, 44, 00, 65, 00, 76, 00, 69, 00, 63, 00, 65, 00, 5C, 00, 44, 00, 55, 00, 53, 00, 45, 00, 25, 00, 64, 00, 00, 00, CC, CC, B0, 33...
 
[+]

Entropy:
6.5234

Code size:
12 KB (12,288 bytes)

Driver
Display name:
duse

Type:
Kernel device driver (KernelDriver)


Scan duse.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.