home

osanbm.sys

OSA Technologies

It runs as a Windows kernel mode device driver named “osanbm”.
Publisher:
OSA Technologies  (signed and verified)

MD5:
045de6efa5a457a85e8e0a2b3b71972b

SHA-1:
f61db58ff521b5f8a36efd17cbe523c935112b40

SHA-256:
a1bb4dec2e72124a1d10de4b72cb9fea23c503fda89ddd34394b203d4d1efcf4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 6:47:16 PM UTC  (today)

File size:
11.3 KB (11,544 bytes)

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\osanbm.sys

Digital Signature
Signed by:
OSA Technologies

Authority:
VeriSign, Inc.

Valid from:
9/20/2006 2:00:00 AM

Valid to:
9/21/2007 1:59:59 AM

Subject:
CN=OSA Technologies, OU=Client BU, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=OSA Technologies, L=Taipei, S=Taiwan, C=TW

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
1850357D2AC53507346AA4035C9CC4F5

File PE Metadata
Compilation timestamp:
11/8/2006 2:01:00 PM

OS version:
5.2

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
192:4o9Zuj9o4DAEL/CldolMzMjGwP7lMGC+ebMxQZgjlJMmPj:4o9Zujt1LCcgq0bcQ6jnj

Entry address:
0x14B0

Entry point:
76, 65, 72, 69, 73, 69, 67, 6E, 2E, 63, 6F, 6D, 30, 12, 06, 03, 55, 1D, 13, 01, 01, FF, 04, 08, 30, 06, 01, 01, FF, 02, 01, 00, 30, 41, 06, 03, 55, 1D, 1F, 04, 3A, 30, 38, 30, 36, A0, 34, A0, 32, 86, 30, 68, 74, 74, 70, 3A, 2F, 2F, 63, 72, 6C, 2E, 76, 65, 72, 69, 73, 69, 67, 6E, 2E, 63, 6F, 6D, 2F, 54, 68, 61, 77, 74, 65, 54, 69, 6D, 65, 73, 74, 61, 6D, 70, 69, 6E, 67, 43, 41, 2E, 63, 72, 6C, 30, 13, 06, 03, 55, 1D, 25, 04, 0C, 30, 0A, 06, 08, 2B, 06, 01, 05, 05, 07, 03, 08, 30, 0E, 06, 03, 55, 1D, 0F, 01...
 
[+]

Code size:
2.5 KB (2,560 bytes)

Driver
Display name:
osanbm

Type:
Kernel device driver (KernelDriver)


Scan osanbm.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.