home

shinecamv2.sys

Windows 2000 DDK driver

Gan Zhigang

It runs as a Windows 64-bit kernel mode device driver named “ShineCam Virtual Camera”.
Publisher:
Windows (R) 2000 DDK provider  (signed by Gan Zhigang)

Product:
Windows (R) 2000 DDK driver

Description:
WDM Video Capture Driver

Version:
5.00.2195.6717

MD5:
ca0346dfbb6edb779089b1566fbd7234

SHA-1:
fba3c731b4b4f3c14e850070bd29c41bf48cca3f

SHA-256:
a7607d1b03c978d596586d5ebcbccc4ea6ffbca9d0749c8aefba92ef054fcf1a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 7:14:49 AM UTC  (today)

File size:
254.2 KB (260,256 bytes)

Product version:
5.00.2195.6717

Copyright:
Copyright (C) Microsoft Corp. 1981-1999

Original file name:
testcap.sys

File type:
Driver (Win64 SYS)

Common path:
C:\Windows\System32\drivers\shinecamv2.sys

Digital Signature
Signed by:
Gan Zhigang

Authority:
GlobalSign nv-sa

Valid from:
9/25/2012 8:56:03 AM

Valid to:
9/26/2013 8:56:03 AM

Subject:
CN=Gan Zhigang, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
112107B0C9F036474345D790D31E5828E92D

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
3072:s4Y086dcpzQP0P35L23gEfFhiHisJSPsvid6UR2Md/Fe85/qI:s4Y086dcpzQP0xL23RthiHmPsq4Mj

Entry point:
48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, 06, 31, FC, FF, CC, CC, 00, D3, 03, 00, 00, 00, 00, 00, 00, 00, 00, 00, AE, D3, 03, 00, C0, 2C, 00, 00, C0, D2, 03, 00, 00, 00, 00, 00, 00, 00, 00, 00, 92, D4, 03, 00, 80, 2C, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 76, D4, 03, 00, 00, 00, 00, 00, 54, D4, 03, 00, 00, 00, 00, 00, 34, D4, 03, 00, 00, 00, 00, 00, 14, D4, 03, 00, 00, 00, 00, 00, BC, D3, 03, 00...
 
[+]

Driver
Display name:
ShineCam Virtual Camera

Service name:
ShineCam2

Type:
Kernel device driver (KernelDriver)


Scan shinecamv2.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.