home

HIDKMDF.SYS

Windows Win 7 DDK driver

Tanaka Yusuke

Publisher:
Windows (R) Win 7 DDK provider  (signed by Tanaka Yusuke)

Product:
Windows (R) Win 7 DDK driver

Description:
Filter Driver for HID-KMDF Interface

Version:
6.1.7600.16385 built by: WinDDK

MD5:
54e63dc1162b473ee7ae66cb76656e05

SHA-1:
fdcde80099e4be0905212fef08e64d870d2e2c55

SHA-256:
d4d19638480e33d2f42653dc74a80e639c0f76484645499680ad9b3a7245f650

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/23/2024 8:42:29 PM UTC  (today)

File size:
12.3 KB (12,584 bytes)

Product version:
6.1.7600.16385

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
HIDKMDF.SYS

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\files\hidkmdf.sys

Digital Signature
Signed by:
Tanaka Yusuke

Authority:
GlobalSign nv-sa

Valid from:
11/20/2012 6:20:48 PM

Valid to:
11/21/2013 6:20:48 PM

Subject:
CN=Tanaka Yusuke, C=JP

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121EC0B7A5C57933DDB040804B322B76916

File PE Metadata
Compilation timestamp:
11/22/2012 3:58:19 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
192:tjs5QANpmTu88TgBxe1HCjm+ql01xsxxmSFOkP:1eQYpx8pK5+qYCYSFOkP

Entry address:
0x50BE

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 38, FF, FF, FF, CC, CC, 14, 51, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 80, 51, 00, 00, 08, 20, 00, 00, 0C, 51, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, A6, 51, 00, 00, 00, 20, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 8E, 51, 00, 00, 00, 00, 00, 00, 62, 51, 00, 00, 70, 51, 00, 00, 4C, 51, 00, 00, 3C, 51, 00, 00, 2C, 51, 00, 00, 00, 00, 00, 00, B9, 02, 49, 6F, 66, 43, 61, 6C, 6C, 44, 72, 69, 76, 65, 72, 00, BE, 04...
 
[+]

Code size:
1.5 KB (1,536 bytes)

Scan HIDKMDF.SYS - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.