home

kdvm.dll

VitualKD

SysProgs.org

Publisher:
SysProgs.org  (signed and verified)

Product:
VitualKD

Description:
Kernel Debugger Extension DLL for VM debugging

Version:
2.0

MD5:
d65c6c0fd1ff2e109d46156299223025

SHA-1:
2c486cda76e175c56ace73e32c9340cb87b13d8a

SHA-256:
478ef0f07584b20093cce78b31282e011128d4af2d47c6d8ce9db65cd9c81e70

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 5:12:50 AM UTC  (today)

File size:
19.6 KB (20,120 bytes)

Product version:
2.5.4

Copyright:
LGPL

Trademarks:
SysProgs.org

Original file name:
kdvm.dll

File type:
Dynamic link library (Win64 DLL)

Language:
English

Common path:
C:\Windows\System32\kdvm.dll

Digital Signature
Signed by:
SysProgs.org

Authority:
SysProgs.org

Valid from:
6/20/2009 4:33:23 PM

Valid to:
1/1/2040 1:59:59 AM

Subject:
CN=SysProgs.org

Issuer:
CN=SysProgs.org

Serial number:
27A204D597CF23A6471AACAF9BA42061

File PE Metadata
Compilation timestamp:
8/6/2011 2:09:50 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
384:Z9XG/xzZ7dgGVdGL+jIBaByTKx9nF0muAoH21YJL2:fWxtWGtIAxZF34WQL2

Entry address:
0x32B0

Entry point:
E9, FD, 01, 00, 00, 53, 56, 57, B8, 68, 58, 4D, 56, BB, 52, 50, 43, C9, 4C, 8B, C1, B9, 1E, 00, 00, 00, BA, 58, 56, 00, 00, EF, F7, C1, 00, 00, 01, 00, 74, 15, 41, 89, 30, 41, 89, 78, 04, 41, 89, 50, 08, 5F, 5E, 5B, 48, 33, C0, 48, FF, C0, C3, BA, 58, 56, 00, 00, ED, 3D, 56, 42, 4F, 58, 74, 07, 5F, 5E, 5B, 48, 33, C0, C3, 5F, 5E, 5B, 48, 33, C0, 48, 83, C0, 02, C3, 56, 57, B8, 68, 58, 4D, 56, 8B, 51, 08, 81, CA, 58, 56, 00, 00, 8B, 31, 8B, 79, 04, B9, 1E, 00, 06, 00, EF, 81, F9, 00, 00, 01, 00, 5F, 5E, 0F...
 
[+]

Entropy:
5.9542

Packer / compiler:
Xtreme-Protector v1.05

Code size:
11 KB (11,264 bytes)

Scan kdvm.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.