home

PTSimBus.sys

PenTablet Bus enumerator

Contoso.com(Test)

It runs as a Windows 64-bit kernel mode device driver named “PenTablet Bus Enumerator”.
Publisher:
PenTablet Driver  (signed by Contoso.com(Test))

Product:
PenTablet Bus enumerator

Version:
5.1.0.0 built by: WinDDK

MD5:
c456c2db7f7d6a3112a360ddf315298b

SHA-1:
c1ac6df83576c2a213fca55113eecb43e08072fb

SHA-256:
e53aeb04f909b4d245ec9b5bfcf31f547c1397a53d2bf2cee460ee42ca9d89ca

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/27/2024 4:11:17 AM UTC  (today)

File size:
22.7 KB (23,208 bytes)

Product version:
5.1.0.0

Copyright:
Copyright (C) 2002-2006

Original file name:
PTSimBus.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\ptsimbus.sys

Digital Signature
Signed by:
Contoso.com(Test)

Authority:
Contoso.com(Test)

Valid from:
6/14/2009 7:55:11 PM

Valid to:
12/31/2039 5:59:59 PM

Subject:
CN=Contoso.com(Test)

Issuer:
CN=Contoso.com(Test)

Serial number:
4C287E540B95A4B64B9A8E9146B469DB

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
384:Qf+xm6L2st1ZLhcxIHkeT0MoZ+OXrC31+Wew3oVS+tfHYJL2UF:vvL2INseTztlZofFmL2UF

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 7D, FF, FF, FF, CC, CC, CC, E8, 70, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 36, 76, 00, 00, 20, 30, 00, 00, C8, 70, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, C8, 76, 00, 00, 00, 30, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, A6, 76, 00, 00, 98, 76, 00, 00, 84, 76, 00, 00, 70, 76, 00, 00, 5A, 76, 00, 00, 44, 76, 00, 00, B4, 76, 00, 00, 00, 00, 00, 00, 68, 72, 00, 00, 7E, 72, 00, 00, 94, 72, 00, 00, A8, 72, 00, 00, C6...
 
[+]

Entropy:
6.3121

Driver
Display name:
PenTablet Bus Enumerator

Service name:
PTSimBus

Type:
Kernel device driver (KernelDriver)

Group:
Extended Base


Scan PTSimBus.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.