home

kdvm.dll

VitualKD

SysProgs.org

Publisher:
SysProgs.org  (signed and verified)

Product:
VitualKD

Description:
Kernel Debugger Extension DLL for VM debugging

Version:
2.0

MD5:
0aee73540397dc532859e297fe227d5b

SHA-1:
c8023d139cb46c4a1a74cfdaf12987639bda9fd4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/23/2024 12:11:02 PM UTC  (today)

File size:
16.6 KB (17,048 bytes)

Product version:
2.3

Copyright:
LGPL

Trademarks:
SysProgs.org

Original file name:
kdvm.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Windows\System32\kdvm.dll

Digital Signature
Signed by:
SysProgs.org

Authority:
SysProgs.org

Valid from:
6/20/2009 10:33:23 PM

Valid to:
1/1/2040 8:59:59 AM

Subject:
CN=SysProgs.org

Issuer:
CN=SysProgs.org

Serial number:
27A204D597CF23A6471AACAF9BA42061

File PE Metadata
Compilation timestamp:
12/31/2009 10:16:25 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
384:Wb5bkxC0sYekxqxxmmF0jTrbrxlJybxYJLeGb:A4xfsfkx8xMjTrPxlJyILtb

Entry address:
0x2DF0

Entry point:
E9, E5, FF, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 91, BA, 59, 56, 00, 00, EF, C3, CC, CC, CC, CC, CC, CC, CC, CC, 60, B8, 68, 58, 4D, 56, 8B, 59, 0C, 8B, 51, 08, 81, CA, 58, 56, 00, 00, 8B, 31, 8B, 79, 04, B9, 1E, 00, 05, 00, EF, 81, F9, 00, 00, 01, 00, 61, 0F, 94, C0, 83, E0, 01, C3, CC, CC, CC, CC, CC, 60, B8, 68, 58, 4D, 56, BB, 00, 00, 01, 00, 87, CA, 8B, 7C, 24, 24, 8B, 32, 8B, 6A, 04, 8B, 52, 08, 81, CA, 59, 56, 00, 00, F3, 6C, 81, FB, 00, 00, 01, 00, 75, 07, 61, 33, C0, 40, C2, 04, 00...
 
[+]

Entropy:
5.9504

Packer / compiler:
tElock 0.99 - 1.0 private

Code size:
9 KB (9,216 bytes)

Scan kdvm.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.