home

nvlddmkm-patched.sys

NVIDIA Windows Kernel Mode Driver, Version 376.53

Edgard Roberto Viera

It runs as a Windows 64-bit kernel mode device driver named “nvlddmkm”.
Publisher:
NVIDIA Corporation  (signed by Edgard Roberto Viera)

Product:
NVIDIA Windows Kernel Mode Driver, Version 376.53

Version:
21.21.13.7653

MD5:
372a8585b90d1a5e5bcf4759febfaa9a

SHA-1:
23aeb9121b9f582895d3696152be9f85b9b3632b

SHA-256:
7584c806a10d6242368a55aba472e848363c8c3bd9bfb2ae7052b23f51d70766

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 10:59:39 PM UTC  (today)

File size:
13.5 MB (14,179,904 bytes)

Product version:
21.21.13.7653

Copyright:
(C) 2016 NVIDIA Corporation. All rights reserved.

Original file name:
nvlddmkm.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\nvlddmkm-patched.sys

Digital Signature
Signed by:
Edgard Roberto Viera

Authority:
GlobalSign nv-sa

Valid from:
6/25/2012 10:51:29 PM

Valid to:
6/26/2013 10:51:29 PM

Subject:
CN=Edgard Roberto Viera, C=US

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121C44616E3C635CF293F8BE9DCAB685E6B

File PE Metadata
Compilation timestamp:
12/29/2016 7:39:24 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
12.0

Entry address:
0xDAAD54

Entry point:
48, 89, 5C, 24, 08, 57, 48, 83, EC, 20, 48, 8B, DA, 48, 8B, F9, E8, A3, 1F, 00, 00, 48, 8B, D3, 48, 8B, CF, 48, 8B, 5C, 24, 30, 48, 83, C4, 20, 5F, E9, 82, E2, FF, FF, CC, CC, 48, 8B, C4, 48, 89, 58, 08, 48, 89, 70, 10, 48, 89, 78, 18, 55, 41, 54, 41, 55, 41, 56, 41, 57, 48, 8D, 68, 88, 48, 81, EC, 50, 01, 00, 00, 48, 8B, 05, 16, 55, 9E, FF, 48, 33, C4, 48, 89, 45, 40, 83, 64, 24, 30, 00, 48, 8D, 4C, 24, 30, 45, 33, FF, 45, 33, F6, 33, F6, E8, 3C, F2, 30, FF, 48, 8B, D8, 48, 85, C0, 0F, 84, BA, 02, 00, 00...
 
[+]

Entropy:
6.7904

Code size:
7.9 MB (8,285,184 bytes)

Driver
Display name:
nvlddmkm

Type:
Kernel device driver (KernelDriver)

Group:
Video


Scan nvlddmkm-patched.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.