rootusb.sys

It runs as a Windows kernel mode device driver named “MFP Server USB Root Driver”.
Scan rootusb.sys - Powered by Reason Core Security
MD5:
e7821c93c62398955dfda32b66747ab1

SHA-1:
71336774d1e92c0161b59da7cda1d48b676c6d16

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/11/2016 12:56:15 PM UTC  (today)

File size:
46.9 KB (48,000 bytes)

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\rootusb.sys

File PE Metadata
Compilation timestamp:
6/2/2006 8:07:05 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
7.0

CTPH (ssdeep):
768:AkBEgI2hTGh6UA+hsY5421ib5KjugiX5T2t99+ThlaphzCZgd:VEgI2hTGa+P5421ib5KqgipT2uwphzCO

Entry address:
0xAD9E

Entry point:
55, 8B, EC, 33, C0, 85, C0, 75, 0D, 8B, 0D, 80, 6D, 01, 00, 83, E1, 02, 85, C9, 74, 1A, 68, 80, AD, 01, 00, E8, 30, BE, FF, FF, 83, C4, 04, 68, 90, AD, 01, 00, E8, 23, BE, FF, FF, 83, C4, 04, 8B, 55, 0C, 0F, B7, 02, 83, C0, 02, 66, A3, 8A, 6D, 01, 00, 8B, 4D, 0C, 66, 8B, 11, 66, 89, 15, 88, 6D, 01, 00, 68, 54, 42, 75, 73, 0F, B7, 05, 8A, 6D, 01, 00, 50, 6A, 01, FF, 15, A8, 6C, 01, 00, A3, 8C, 6D, 01, 00, 83, 3D, 8C, 6D, 01, 00, 00, 75, 07, B8, 9A, 00, 00, C0, EB, 6C, 8B, 4D, 0C, 51, 68, 88, 6D, 01, 00, FF...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
43.6 KB (44,672 bytes)

Driver
Display name:
MFP Server USB Root Driver

Service name:
ROOTUSB

Type:
Kernel device driver (KernelDriver)

Group:
Base


Scan rootusb.sys - Powered by Reason Core Security