home

phydmaccx86.sys

Suzhou Ind. Park ShiSuanKeJi Co., Ltd.

It runs as a Windows kernel mode device driver named “PhyDMACC_1_2_0”.
Publisher:
Suzhou Ind. Park ShiSuanKeJi Co., Ltd.  (signed and verified)

MD5:
8af7fc0eb2e945c1be06238bde456091

SHA-1:
8892ea0b3a05c65889162761ace8409df270d4c3

SHA-256:
23787eb342fd38da73ce785023176f98304267c6f6fa8a50e718da096c7a7951

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/27/2024 2:44:39 AM UTC  (today)

File size:
13.9 KB (14,280 bytes)

File type:
Driver (Win32 SYS)

Digital Signature
Signed by:
Suzhou Ind. Park ShiSuanKeJi Co., Ltd.

Authority:
GlobalSign nv-sa

Valid from:
7/6/2009 6:56:35 AM

Valid to:
7/6/2010 6:56:35 AM

Subject:
E=support@winmount.com, CN="Suzhou Ind. Park ShiSuanKeJi Co., Ltd.", O="Suzhou Ind. Park ShiSuanKeJi Co., Ltd.", C=CN

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
010000000001224E6689D6

File PE Metadata
Compilation timestamp:
2/4/2010 6:52:36 AM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
384:5xhkrUu1mqi5I93s2eZDs8j+7mBZfdUb+5aSC:VCmt4C+5i5aSC

Entry address:
0x12BE

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 62, F8, FF, FF, CC, CC, 30, 13, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, E0, 14, 00, 00, 24, 10, 00, 00, 0C, 13, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 92, 15, 00, 00, 00, 10, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 62, 15, 00, 00, 4E, 15, 00, 00, 3A, 15, 00, 00, 26, 15, 00, 00, 14, 15, 00, 00, 00, 15, 00, 00, EE, 14, 00, 00, 7A, 15, 00, 00, 00, 00, 00, 00, 54, 14, 00, 00, 74, 14, 00, 00, 92, 14, 00, 00, 36, 14...
 
[+]

Code size:
3.8 KB (3,840 bytes)

Driver
Display name:
PhyDMACC_1_2_0

Type:
Kernel device driver (KernelDriver)


Scan phydmaccx86.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.