home

hintnip64.sys

hintsoft diskless

Shanghai Hintsoft Co., Ltd

It runs as a Windows 64-bit kernel mode device driver named “hintNIP”.
Publisher:
HintSoft Inc.   (signed by Shanghai Hintsoft Co., Ltd)

Product:
hintsoft diskless

Description:
hintnip

Version:
1.1.5.1

MD5:
1f3d7c2042f05c0237fff964298a7f58

SHA-1:
76f2f2616fb518f1db1c055d456721602111ce5f

SHA-256:
25e2d14346c1cf9a1238faa3fb7949b45f9a0c7edb28a04c8a077b874ed0b8de

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 1:38:56 AM UTC  (today)

File size:
40.1 KB (41,088 bytes)

Product version:
1.1.5.1

Copyright:
Copyright (C) HintSoft,Inc.

Original file name:
hintnip.sys

File type:
Driver (Win64 SYS)

Common path:
C:\Windows\System32\drivers\hintnip64.sys

Digital Signature
Signed by:
Shanghai Hintsoft Co., Ltd

Authority:
GlobalSign nv-sa

Valid from:
9/3/2013 9:03:40 AM

Valid to:
9/3/2016 9:03:40 AM

Subject:
CN="Shanghai Hintsoft Co., Ltd", O="Shanghai Hintsoft Co., Ltd", L=上海, S=上海, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121BA33F49A45FD5819F71D5E36B0F9BD45

File PE Metadata
Compilation timestamp:
6/10/2015 4:11:20 PM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
768:rm45gw8XYT7gGLFwRlDsHEhvQjisGRCiQ:rlqXAMGJwRlAHEhU7iQ

Entry address:
0xB064

Entry point:
48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, 3E, A8, FF, FF, CC, CC, D0, B0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, E6, B3, 00, 00, 10, 80, 00, 00, C0, B0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 0C, B4, 00, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, F4, B3, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, EE, B1, 00, 00, 00, 00, 00, 00, FC, B1, 00, 00, 00, 00, 00, 00, 10, B2, 00, 00...
 
[+]

Entropy:
5.8643

Code size:
29 KB (29,696 bytes)

Driver
Display name:
hintNIP

Type:
Kernel device driver (KernelDriver)

Group:
Boot Bus Extender


Scan hintnip64.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.