home

nvlddmkm-patched.sys

NVIDIA Windows Kernel Mode Driver, Version 359.23

Edgard Roberto Viera

It runs as a Windows 64-bit kernel mode device driver named “nvlddmkm”.
Publisher:
NVIDIA Corporation  (signed by Edgard Roberto Viera)

Product:
NVIDIA Windows Kernel Mode Driver, Version 359.23

Version:
10.18.13.5923

MD5:
29707943d1ecc5e502013aee0ea62219

SHA-1:
befe2510b54b1e834081ced863841146ce4f44dc

SHA-256:
44a9fd983f0e7250fb70e23c1709b23530ae830bebc6e0957f93b6ac1db92bdb

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 6:41:02 AM UTC  (today)

File size:
10.7 MB (11,221,568 bytes)

Product version:
10.18.13.5923

Copyright:
(C) 2015 NVIDIA Corporation. All rights reserved.

Original file name:
nvlddmkm.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\nvlddmkm-patched.sys

Digital Signature
Signed by:
Edgard Roberto Viera

Authority:
GlobalSign nv-sa

Valid from:
6/25/2012 11:51:29 PM

Valid to:
6/26/2013 11:51:29 PM

Subject:
CN=Edgard Roberto Viera, C=US

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121C44616E3C635CF293F8BE9DCAB685E6B

File PE Metadata
Compilation timestamp:
12/22/2015 11:16:44 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
12.0

Entry address:
0xAD4000

Entry point:
48, 89, 5C, 24, 18, 55, 56, 57, 41, 54, 41, 55, 41, 56, 41, 57, 48, 8D, AC, 24, D0, FB, FF, FF, 48, 81, EC, 30, 05, 00, 00, 48, 8B, 05, 9A, 18, C9, FF, 48, 33, C4, 48, 89, 85, 20, 04, 00, 00, 45, 33, F6, 4C, 8B, FA, 48, 89, 54, 24, 48, 48, 8B, F1, 4C, 89, 74, 24, 30, 4C, 89, 74, 24, 38, 48, 85, C9, 75, 05, E8, 82, CA, 5D, FF, 4D, 85, FF, 75, 05, E8, 78, CA, 5D, FF, 48, 8D, 8D, 00, 03, 00, 00, C7, 85, 00, 03, 00, 00, 14, 01, 00, 00, FF, 15, 9D, D2, B3, FF, 85, C0, 78, 28, 83, BD, 04, 03, 00, 00, 06, 77, 0B...
 
[+]

Entropy:
6.5836

Code size:
7.1 MB (7,440,896 bytes)

Driver
Display name:
nvlddmkm

Type:
Kernel device driver (KernelDriver)

Group:
Video


Scan nvlddmkm-patched.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.