home

genusb.sys

GenUSB - Kernel Driver

Shenzhen TianMeiYi Technology Co., Ltd.

It runs as a Windows 64-bit kernel mode device driver named “GenUSB - Kernel Driver INF_DATE, INF_VERSION”.
Publisher:
Henry He  (signed by Shenzhen TianMeiYi Technology Co., Ltd.)

Product:
GenUSB - Kernel Driver

Version:
0.1.12.1

MD5:
5b4541b7ef32e89d20c68eca92268da8

SHA-1:
be2b202124e4d69e62fed93756319e999b49da49

SHA-256:
ad8028cb9aca54ea052b2c64ae4ac8b9564a121a32bc3b8a728a0aabe56bdc38

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 5:15:42 PM UTC  (today)

File size:
36.5 KB (37,424 bytes)

Product version:
0.1.12.1

Copyright:
Copyright 1997-2007 Henry He, <henryhe008@126.com>

Original file name:
genusb.sys

File type:
Driver (Win64 SYS)

Common path:
C:\Windows\System32\drivers\genusb.sys

Digital Signature
Signed by:
Shenzhen TianMeiYi Technology Co., Ltd.

Authority:
VeriSign, Inc.

Valid from:
11/20/2007 8:00:00 AM

Valid to:
11/20/2008 7:59:59 AM

Subject:
CN="Shenzhen TianMeiYi Technology Co., Ltd.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Shenzhen TianMeiYi Technology Co., Ltd.", L=Shenzhen, S=Guangdong, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
24D69CC8C4E6D3385033F083970D6B51

File PE Metadata
Compilation timestamp:
8/3/2007 3:16:46 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
384:W9LRrdKHXUIejKv20GVwuCVruU9/5wrgWVxxgUPx1Eju//VTF4XP1YJLWd6jos7x:W9lrkHkIa0kwuC1EB/VTmQLAmH7bE1o

Entry address:
0xA010

Entry point:
48, 8B, 05, F9, E0, FF, FF, 49, B9, 32, A2, DF, 2D, 99, 2B, 00, 00, 48, 85, C0, 74, 05, 49, 3B, C1, 75, 2F, 4C, 8D, 05, DE, E0, FF, FF, 48, B8, 20, 03, 00, 00, 80, F7, FF, FF, 48, 8B, 00, 49, 33, C0, 49, B8, FF, FF, FF, FF, FF, FF, 00, 00, 49, 23, C0, 49, 0F, 44, C1, 48, 89, 05, B6, E0, FF, FF, 48, F7, D0, 48, 89, 05, A4, E0, FF, FF, E9, 57, 8F, FF, FF, CC, CC, CC, B8, A0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 2C, A4, 00, 00, 10, 70, 00, 00, A8, A0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 5E, A4, 00, 00...
 
[+]

Entropy:
6.2912

Code size:
24.5 KB (25,088 bytes)

Driver
Display name:
GenUSB - Kernel Driver INF_DATE, INF_VERSION

Service name:
genusb

Type:
Kernel device driver (KernelDriver)


Scan genusb.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.