home

FPWinIo.sys

Egis Technology Inc. FPWinIO Driver

Egis Technology Inc.

It runs as a Windows 64-bit kernel mode device driver named “FPWinIo”.
Publisher:
Egis Technology Inc.  (signed and verified)

Product:
Egis Technology Inc. FPWinIO Driver

Description:
FPWinIO Driver

Version:
3.5.0.0

MD5:
af143d2a3c24cbd5d3ff02d7e94bbad4

SHA-1:
5a6ecb319be003c9d3ff98e57bd8de6d83e1f0a4

SHA-256:
e6016c65c298fbdeb8b4150c13dbed9ee3e23bc9035219110fd3051052ce47f0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 1:39:49 AM UTC  (today)

File size:
29.8 KB (30,544 bytes)

Product version:
3.5.0.0

Copyright:
Copyright © 2011 Egis Technology Inc. All rights reserved.

Original file name:
FPWinIo.sys

File type:
Driver (Win64 SYS)

Language:
Chinese (Traditional, Taiwan)

Common path:
C:\Windows\System32\drivers\fpwinio.sys

Digital Signature
Signed by:
Egis Technology Inc.

Authority:
Symantec Corporation

Valid from:
8/25/2015 5:00:00 PM

Valid to:
8/25/2016 4:59:59 PM

Subject:
CN=Egis Technology Inc., OU=IT, O=Egis Technology Inc., L=Taipei, S=Taiwan, C=TW, SERIALNUMBER=28835517, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.2=Taiwan, OID.1.3.6.1.4.1.311.60.2.1.3=TW

Issuer:
CN=Symantec Class 3 Extended Validation Code Signing CA - G2, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
0CC74826C469D4C1E01899316E34F3DC

File PE Metadata
Compilation timestamp:
7/4/2016 8:40:33 PM

OS version:
6.3

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
12.0

CTPH (ssdeep):
384:r20HMp2HAJ4NWXZcJ6pS/jAjjb7nYPL9RKHhh+U1qpSDDi7FRZOlkovgpJb:r2CMYi4NWc7M/GEzDDi/fov6x

Entry address:
0x6000

Entry point:
48, 89, 5C, 24, 08, 57, 48, 83, EC, 20, 48, 8B, DA, 48, 8B, F9, E8, 17, 00, 00, 00, 48, 8B, D3, 48, 8B, CF, 48, 8B, 5C, 24, 30, 48, 83, C4, 20, 5F, E9, C2, B5, FF, FF, CC, CC, 48, 8B, 05, ED, DF, FF, FF, 45, 33, C9, 49, B8, 32, A2, DF, 2D, 99, 2B, 00, 00, 48, 85, C0, 74, 05, 49, 3B, C0, 75, 38, 0F, 31, 48, C1, E2, 20, 48, 8D, 0D, C9, DF, FF, FF, 48, 0B, C2, 48, 33, C1, 48, 89, 05, BC, DF, FF, FF, 66, 44, 89, 0D, BA, DF, FF, FF, 48, 8B, 05, AD, DF, FF, FF, 48, 85, C0, 75, 0A, 49, 8B, C0, 48, 89, 05, 9E, DF...
 
[+]

Entropy:
6.7552

Code size:
8.5 KB (8,704 bytes)

Driver
Display name:
FPWinIo

Type:
Kernel device driver (KernelDriver)


Scan FPWinIo.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.