home

myjadv.sys

Windows 2000 DDK driver

Gan Zhigang

It runs as a Windows 64-bit kernel mode device driver named “MyJad Virtual Webcam”.
Publisher:
Windows (R) 2000 DDK provider  (signed by Gan Zhigang)

Product:
Windows (R) 2000 DDK driver

Description:
WDM Video Capture Driver

Version:
5.00.2195.6717

MD5:
09f7f258957db6318dbe090b70a1bc84

SHA-1:
000c5de032b9f2f3b8f1b136d4090c4e0512642d

SHA-256:
eb2142a3b871c8117af549072d37cbf8c9a91b64058af7c8cb7cf94afeef3699

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 3:01:11 AM UTC  (today)

File size:
254.2 KB (260,256 bytes)

Product version:
5.00.2195.6717

Copyright:
Copyright (C) Microsoft Corp. 1981-1999

Original file name:
testcap.sys

File type:
Driver (Win64 SYS)

Language:
Chinese

Common path:
C:\Windows\System32\drivers\myjadv.sys

Digital Signature
Signed by:
Gan Zhigang

Authority:
GlobalSign nv-sa

Valid from:
9/25/2012 8:56:03 AM

Valid to:
9/26/2013 8:56:03 AM

Subject:
CN=Gan Zhigang, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
112107B0C9F036474345D790D31E5828E92D

File PE Metadata
Compilation timestamp:
5/9/2013 10:19:29 AM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
1536:XPY3T4M3TKc969VfUrp2ghdmGP1Ci3a7f1bRPk4PjgLN9QN7IPA2lEqeTHU6RYrv:w45czhmkC0v6qeDJcMz02qC

Entry address:
0x3D264

Entry point:
48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, 06, 31, FC, FF, CC, CC, 00, D3, 03, 00, 00, 00, 00, 00, 00, 00, 00, 00, AE, D3, 03, 00, C0, 2C, 00, 00, C0, D2, 03, 00, 00, 00, 00, 00, 00, 00, 00, 00, 92, D4, 03, 00, 80, 2C, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 76, D4, 03, 00, 00, 00, 00, 00, 54, D4, 03, 00, 00, 00, 00, 00, 34, D4, 03, 00, 00, 00, 00, 00, 14, D4, 03, 00, 00, 00, 00, 00, BC, D3, 03, 00...
 
[+]

Code size:
11 KB (11,264 bytes)

Driver
Display name:
MyJad Virtual Webcam

Service name:
MyJad

Type:
Kernel device driver (KernelDriver)


Scan myjadv.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.