home

kodemonl.sys

NEXON GT Co., Ltd.

It runs as a Windows kernel mode device driver named “KodeMonL”.
Publisher:
NEXON GT Co., Ltd.  (signed and verified)

MD5:
1996f529b034071d40d7010cc74bc1eb

SHA-1:
6ea1aa77243df96e2b8540185c72fe4b119523c6

SHA-256:
07bc3bffc6ca02ae14d2c6c73fddc16a2e920287dae5505fe7c4c333aa3691f0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 11:55:05 PM UTC  (a few moments ago)

File size:
342.4 KB (350,592 bytes)

File type:
Driver (Win32 SYS)

Common path:
C:\windows\kodemonl.sys

Digital Signature
Signed by:
NEXON GT Co., Ltd.

Authority:
Thawte, Inc.

Valid from:
4/11/2014 9:00:00 AM

Valid to:
4/11/2016 8:59:59 AM

Subject:
CN="NEXON GT Co., Ltd.", O="NEXON GT Co., Ltd.", L=Seongnam-si, S=Gyeonggi-do, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
172DC5A29898E930EBFC8E64468E70B8

File PE Metadata
Compilation timestamp:
12/10/2014 2:41:10 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

Entry address:
0xD03E

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 80, 46, FF, FF, CC, CC, 98, D0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 74, D7, 00, 00, 0C, A0, 00, 00, 8C, D0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, B6, D7, 00, 00, 00, A0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, A2, D7, 00, 00, 8E, D7, 00, 00, 00, 00, 00, 00, 26, D2, 00, 00, 3E, D2, 00, 00, 50, D2, 00, 00, 5E, D2, 00, 00, 76, D2, 00, 00, 92, D2, 00, 00, 9C, D2, 00, 00, B4, D2, 00, 00, C8, D2, 00, 00, D8, D2...
 
[+]

Entropy:
7.9584  (probably packed)

Code size:
35.5 KB (36,352 bytes)

Driver
Display name:
KodeMonL

Type:
Kernel device driver (KernelDriver)


Scan kodemonl.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.