home

ntglm7x64.sys

MSI DualCoreCenter

Micro-Star Int'l Co., Ltd.

It runs as a Windows 64-bit kernel mode device driver named “DualCoreCenter”.
Publisher:
Micro-Star Int'l Co., Ltd.  (signed and verified)

Product:
MSI DualCoreCenter

Description:
NTGLM7X.sys

Version:
0, 7, 1, 10

MD5:
bd53c1fbd5f0de9e87fa691914dfc091

SHA-1:
93d369cba9961d69246b1d0d243a2e3d1d54b8ef

SHA-256:
4ab5c5f126ce24606f0c5eb1fb091a39f294e7f9476e263d411cfc133804e8de

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 11:48:35 PM UTC  (a few moments ago)

File size:
39.3 KB (40,248 bytes)

Product version:
0, 7, 1, 10

Copyright:
Copyright(C) MICRO-STAR

Original file name:
NTGLM7X.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Digital Signature
Signed by:
Micro-Star Int'l Co., Ltd.

Authority:
GeoTrust Inc

Valid from:
9/11/2006 12:43:50 PM

Valid to:
9/11/2008 12:43:50 PM

Subject:
CN="Micro-Star Int'l Co., Ltd.", OU=GeoTrust Code Signing, OU=MIS, O="Micro-Star Int'l Co., Ltd.", L=Taipei, S=Taiwan, C=TW

Issuer:
CN=GeoTrust TrustCenter CodeSigning CA I, O=GeoTrust Inc, OU=GeoTrust TrustCenter CodeSigning CA, C=US

Serial number:
4BE200010020DA64B996E9157CAA

File PE Metadata
Compilation timestamp:
1/10/2007 10:18:10 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
768:JsWj9AUSKhqGYCZ2OXwWkzA042EvppVZQOM7MOTpslmPh4iP5pXOKB:X3/hqfEzUA0lUVZQOXipslm55RO0

Entry address:
0xD350

Entry point:
53, 56, 57, 41, 54, 41, 55, 41, 56, 48, 81, EC, E8, 00, 00, 00, 48, 8B, FA, 48, 8B, F1, E8, 01, 7E, FF, FF, 8B, D8, 44, 8B, C3, 41, BE, 00, 00, 00, C0, 45, 23, C6, 45, 3B, C6, 75, 0A, E8, 09, 7D, FF, FF, E9, AF, 00, 00, 00, 41, BD, 40, 00, 00, 00, 44, 89, 6C, 24, 30, 41, BC, 19, 00, 02, 00, 44, 89, 64, 24, 28, 33, DB, 89, 5C, 24, 20, 45, 32, C9, 4C, 8D, 05, 92, 3F, FF, FF, BA, 02, 00, 00, 00, 48, 8D, 8C, 24, 90, 00, 00, 00, E8, E0, F6, FF, FF, 44, 89, 6C, 24, 30, 44, 89, 64, 24, 28, 89, 5C, 24, 20, 45, 32...
 
[+]

Entropy:
6.1371

Code size:
27 KB (27,648 bytes)

Driver
Display name:
DualCoreCenter

Type:
Kernel device driver (KernelDriver)


Scan ntglm7x64.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.