home

msi_mainsys64.sys

Your Product Name

Micro-Star Int'l Co. Ltd.

Publisher:
Your Corporation  (signed by Micro-Star Int'l Co. Ltd.)

Product:
Your Product Name

Description:
Description string for MSI_MAINSYS driver

Version:
1.00

MD5:
7ceaf154362ed1c87d116f5dbe6eed64

SHA-1:
5fcf7156613bff2797a33d4f0abc86fdf498c3dd

SHA-256:
f89f98bf0ac748f173ed5b2ef8de59057ec6a5d7f1fa3bedd6d1b9415ecdca91

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/23/2024 9:25:03 AM UTC  (today)

File size:
31.8 KB (32,568 bytes)

Product version:
1.00

Copyright:
Copyright (c) Your Corporation199X-200X

Original file name:
MSI_MAINSYS.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\msi_mainsys64.sys

Digital Signature
Signed by:
Micro-Star Int'l Co. Ltd.

Authority:
GlobalSign nv-sa

Valid from:
8/28/2008 3:19:45 PM

Valid to:
8/28/2011 3:19:45 PM

Subject:
CN=Micro-Star Int'l Co. Ltd., O=Micro-Star Int'l Co. Ltd., C=TW

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000011C08B7F67E

File PE Metadata
Compilation timestamp:
12/29/2009 4:37:53 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
384:tC89Fb3YYWdWSSRlFzvuZqKfdrHWxVvj9sXYJLF0LM8NcdUb+Y:08r0ZCRvuZqKFrolZs2L2LPiY

Entry address:
0xA350

Entry point:
53, 56, 57, 41, 54, 41, 55, 41, 56, 48, 81, EC, E8, 00, 00, 00, 48, 8B, FA, 48, 8B, F1, E8, B9, 88, FF, FF, 8B, D8, 44, 8B, C3, 41, BE, 00, 00, 00, C0, 45, 23, C6, 45, 3B, C6, 75, 0A, E8, C1, 87, FF, FF, E9, AF, 00, 00, 00, 41, BD, 40, 00, 00, 00, 44, 89, 6C, 24, 30, 41, BC, 19, 00, 02, 00, 44, 89, 64, 24, 28, 33, DB, 89, 5C, 24, 20, 45, 32, C9, 4C, 8D, 05, 92, 6F, FF, FF, BA, 02, 00, 00, 00, 48, 8D, 8C, 24, 90, 00, 00, 00, E8, E0, F6, FF, FF, 44, 89, 6C, 24, 30, 44, 89, 64, 24, 28, 89, 5C, 24, 20, 45, 32...
 
[+]

Entropy:
6.1431

Code size:
16.5 KB (16,896 bytes)

Scan msi_mainsys64.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.