home

SbieDrv.sys

Sandboxie

亚数信息科技(上海)有限公司

Publisher:
Sandboxie Holdings, LLC  (signed by 亚数信息科技(上海)有限公司)

Product:
Sandboxie

Description:
Sandboxie Kernel Mode Driver

Version:
5.06

MD5:
9e48c3abac84f02c23407e50e014ec23

SHA-1:
0bf95041cd63a98ce0cb7e9f5b9f583a8a25df43

SHA-256:
0ea69f24d0be465a7ceeadedc86a1ff2d618a3cde5cdfbc519cb19da475bd2fb

Scanner detections:
3 / 68

Status:
Clean  (3 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/20/2024 3:21:34 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
Generic
2016.0.2944

Bkav FE
W64.HfsAdware
1.3.0.7383

Zillya! Antivirus
Adware.Ymeta.Win32.532
2.0.0.2472

File size:
183.4 KB (187,808 bytes)

Product version:
5.06

Copyright:
Copyright © 2004-2015 by Sandboxie Holdings, LLC

Original file name:
SbieDrv.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\sandboxie 5.06 {x86 x64} incl keymaker\sandboxie v5.06\patched_files\x64\sbiedrv.sys

Digital Signature
Signed by:
亚数信息科技(上海)有限公司

Authority:
TrustAsia Technologies, Inc.

Valid from:
3/1/2015 3:04:00 AM

Valid to:
3/30/2018 4:04:00 AM

Subject:
CN=亚洲诚信代码签名测试证书SHA2, O=亚数信息科技(上海)有限公司, L=上海市, S=上海市, C=CN

Issuer:
CN=TrustAsia SHA2 Code Signing CA, O="TrustAsia Technologies, Inc.", C=CN

Serial number:
07

File PE Metadata
Compilation timestamp:
10/22/2015 2:08:31 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
10.0

CTPH (ssdeep):
3072:Y5G3yshc2uhTiYuTTaHCTi306UodieoDyOOD1Z7d0Su:6sihOYuaHrvUodiULmf

Entry address:
0x2CD80

Entry point:
48, 89, 5C, 24, 08, 57, 48, 83, EC, 20, 48, 89, 0D, DF, B0, FF, FF, 48, 8B, FA, 48, C7, 41, 68, 00, 00, 00, 00, 48, 8D, 0D, BD, B0, FF, FF, 48, 8D, 15, CE, 23, FF, FF, FF, 15, D0, 12, FF, FF, E8, 3B, F9, FF, FF, 0F, B6, D8, 84, C0, 0F, 84, 30, 01, 00, 00, E8, CB, FD, FD, FF, 48, 89, 05, 24, AD, FF, FF, 48, 85, C0, 75, 16, 45, 33, C0, 33, D2, B9, 50, 04, 01, C1, E8, 60, 5C, FE, FF, 32, DB, E9, 09, 01, 00, 00, E8, 04, 94, FD, FF, 0F, B6, D8, 84, C0, 0F, 84, F9, 00, 00, 00, 48, 8B, 57, 08, 48, 8B, 0D, EE, AC...
 
[+]

Entropy:
6.2001

Code size:
131 KB (134,144 bytes)

Scan SbieDrv.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.