home

FASTMNT.SYS

Chongqing XIA Software Technology, Inc.

It runs as a Windows 64-bit kernel mode device driver named “FASTMNT”.
Publisher:
CompanyName  (signed by Chongqing XIA Software Technology, Inc.)

Description:
Mount Disk I/O Driver

Version:
2.0.0.1

MD5:
a3575758a77aae429bf2c5e3f3bc8d9b

SHA-1:
43ce80a24b4854f7f0e4ad7f110a94ea5f6ecedf

SHA-256:
841928f6dfc93478973d854ec348b1ef728e47edea5d7fa75032972f940906f3

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/27/2024 3:49:44 AM UTC  (today)

File size:
21 KB (21,528 bytes)

Product version:
2.0.0.1

Copyright:
Copyright

Original file name:
FASTMNT.SYS

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\fastmnt.sys

Digital Signature
Signed by:
Chongqing XIA Software Technology, Inc.

Authority:
VeriSign, Inc.

Valid from:
1/17/2012 5:30:00 AM

Valid to:
1/17/2013 5:29:59 AM

Subject:
CN="Chongqing XIA Software Technology, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Chongqing XIA Software Technology, Inc.", L=Chongqing, S=Yubei District, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5E58F0DCAF2C9AC420FC74855A43F9DD

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
384:tFgZfu+Ms4vMjWXbtv7raaPWQYJLypkEkd6jkGOO9eMhm:kZfWvMqXbl3aaP2L3E2mWO7m

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, DE, FD, FF, FF, 5C, 00, 44, 00, 6F, 00, 73, 00, 44, 00, 65, 00, 76, 00, 69, 00, 63, 00, 65, 00, 73, 00, 5C, 00, 46, 00, 61, 00, 73, 00, 74, 00, 4D, 00, 6E, 00, 74, 00, 25, 00, 75, 00, 00, 00, 5C, 00, 44, 00, 65, 00, 76, 00, 69, 00, 63, 00, 65, 00, 5C, 00, 46, 00, 61, 00, 73, 00, 74, 00, 4D, 00, 6E, 00, 74, 00, 5C, 00, 46, 00, 61, 00, 73, 00, 74, 00, 4D, 00, 6E, 00, 74, 00, 25, 00, 75, 00, 00, 00, 5C, 00, 44, 00, 65, 00, 76, 00, 69, 00, 63, 00, 65, 00, 5C, 00...
 
[+]

Entropy:
6.6415

Driver
Display name:
FASTMNT

Type:
Kernel device driver (KernelDriver)


Scan FASTMNT.SYS - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.