» PictureDll.sys
Overview
Analysis
File Details
Programs (1)

PictureDll.sys

ark PictureDll

Ark Pioneer Microelectronics (Shenzhen) Co., Ltd.

File name:

PictureDll.sys

Publisher:

ark (signed by Ark Pioneer Microelectronics (Shenzhen) Co., Ltd.)

Product:

ark PictureDll

Description:

PictureDll

Version:

1, 5, 0, 0

MD5:

dfe71a784b14a50efcbf0aa918b09cd5

SHA-1:

eae738233e4c5af0677c49a2d8e9b88e3ec2f986

SHA-256:

11c9a1237f793d5378ca599374e6efcd0ebe43e1250263a756999fc22bf88d8c

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/19/2024 2:23:33 PM UTC (today)

File size:

24.7 MB (25,945,448 bytes)

Product version:

1, 5, 0, 0

Original file name:

PictureDll.sys

File type:

Driver (Win64 SYS)

Language:

Chinese (Simplified, PRC)

Common path:

C:\Program Files\usb 2.0 pc camera\picturedll.sys

Digital Signature

Signed by:

Ark Pioneer Microelectronics (Shenzhen) Co., Ltd.

Authority:

VeriSign, Inc.

Valid from:

4/11/2011 3:00:00 AM

Valid to:

5/11/2013 2:59:59 AM

Subject:

CN="Ark Pioneer Microelectronics (Shenzhen) Co., Ltd.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Ark Pioneer Microelectronics (Shenzhen) Co., Ltd.", L=Shenzhen, S=Guangdong, C=CN

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

603EA2AE1D17E7CA9B21CDB8F24BD6D1

File PE Metadata

Compilation timestamp:

3/8/2011 8:26:08 AM

OS version:

5.2

OS bitness:

Win64

Subsystem:

Native (none required)

Linker version:

8.0

CTPH (ssdeep):

393216:zsmy78Q0exHCp1If1wx6kxsP+SNjxx8fC5Tb1lhQiVjPJBHqjJvfm5oWV2WvxeiC:zsH0gdv4uxJDjPJBuYoWV2WvxPSPBlv

Entry address:

0x18C9020

Entry point:

48, 8B, 05, 71, 36, FF, FF, 49, B9, 32, A2, DF, 2D, 99, 2B, 00, 00, 48, 85, C0, 74, 05, 49, 3B, C1, 75, 2F, 4C, 8D, 05, 56, 36, FF, FF, 48, B8, 20, 03, 00, 00, 80, F7, FF, FF, 48, 8B, 00, 49, 33, C0, 49, B8, FF, FF, FF, FF, FF, FF, 00, 00, 49, 23, C0, 49, 0F, 44, C1, 48, 89, 05, 2E, 36, FF, FF, 48, F7, D0, 48, 89, 05, 1C, 36, FF, FF, E9, 97, FF, FF, FF, CC, CC, CC, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 6E, 74, 6F, 73, 6B, 72, 6E, 6C, 2E, 65, 78, 65, 00, 00, 00, 00... 
[+]

Entropy:

4.6262

Code size:

20 KB (20,480 bytes)

The file PictureDll.sys has been discovered within the following program.

USB2.0 PC CAMERA by Sonix

USB2.0 PC Camera is the software package that includes the required driver, configuration and management utilities to support the webcamera device.

www.USB2.0PCCAMERA.com

About 2% of users remove it

Scan PictureDll.sys - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.