home

kdbazis.dll

VitualKD

SysProgs.org

Publisher:
SysProgs.org  (signed and verified)

Product:
VitualKD

Description:
Kernel Debugger Extension DLL for VM debugging

Version:
2.0

MD5:
b04286e927d89bc8c318be400ed8039a

SHA-1:
0329de47f42fc374b00b55422b4eec54fbeedbe1

SHA-256:
7081a567677b6735c345bf0b384d97a2e7c9073b6aee68d6e826b8a2653b8f41

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/26/2024 10:50:31 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
W32/Sality.AT
7.11.30.172

File size:
16.6 KB (17,048 bytes)

Product version:
2.6

Copyright:
LGPL

Trademarks:
SysProgs.org

Original file name:
kdvm.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English

Digital Signature
Signed by:
SysProgs.org

Authority:
SysProgs.org

Valid from:
6/20/2009 4:33:23 PM

Valid to:
1/1/2040 1:59:59 AM

Subject:
CN=SysProgs.org

Issuer:
CN=SysProgs.org

Serial number:
27A204D597CF23A6471AACAF9BA42061

File PE Metadata
Compilation timestamp:
11/17/2011 9:46:18 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
192:1QZJOMminl1x6kSXar2WOZf9hrxh1U0hATRXUMNhMbNyowJL/F:1QvOMminjIayWOb5xh1ULTZhMBYJLF

Entry address:
0x12C0

Entry point:
E9, A5, 1D, 00, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, A1, 30, 54, 02, 10, C3, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, C7, 00, 30, 54, 02, 10, B9, 30, 54, 02, 10, BA, 01, 00, 00, 00, F0, 0F, C1, 11, C3, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 8B, 08, 83, CA, FF, F0, 0F, C1, 11, C3, CC, CC, CC, CC, CC, CC, 33, C0, C6, 05, 34, 54, 02, 10, 00, A3, 24, 50, 00, 10, A3, 28, 50, 00, 10, A3, 1C, 50, 00, 10, 66, A3, 20, 50, 00, 10, A3, 30, 54, 02, 10, E8, 78, 11, 00, 00, 85, C0, 7C, 19, E8, DF, 10, 00...
 
[+]

Entropy:
5.9523

Packer / compiler:
Xtreme-Protector v1.05

Code size:
9 KB (9,216 bytes)

Scan kdbazis.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.