home

smdc4com.sys

ComTrue Technologies

It runs as a Windows file system device driver named “SMDC4COM”.
Publisher:
ComTrue Technologies  (signed and verified)

MD5:
bf55508ade317b17bf4508798f1d3a35

SHA-1:
0dbdb617d5a9fa0b2d25ed38f2b1acbc7a986014

SHA-256:
3150fa735c722debf6f21095e8535b6de1a5676e89db97cdc299afe13be91fe5

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 2:52:54 PM UTC  (today)

File size:
394.1 KB (403,536 bytes)

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\smdc4com.sys

Digital Signature
Signed by:
ComTrue Technologies

Authority:
Thawte, Inc.

Valid from:
3/6/2012 9:00:00 AM

Valid to:
3/7/2014 8:59:59 AM

Subject:
CN=ComTrue Technologies, O=ComTrue Technologies, L=Mapo-Gu, S=Seoul, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
1953217E6111157E01191F89F6913C37

File PE Metadata
Compilation timestamp:
3/5/2014 11:48:21 AM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
384:bzfcxJa6+SlxS1bhBBYU/vefnSgU9qw4HSs0L8BR5DLpfXQiH4ziQJKdaOuY8X:n4MZ7a0vefnSgU9Z43ndYDJKduX

Entry address:
0x6051E

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, D8, FD, FF, FF, 43, 61, 6E, 20, 6E, 6F, 74, 20, 46, 6C, 74, 53, 74, 61, 72, 74, 46, 69, 6C, 74, 65, 72, 69, 6E, 67, 28, 20, 53, 4D, 44, 43, 34, 43, 4F, 4D, 6D, 69, 6E, 69, 46, 69, 6C, 74, 65, 72, 44, 61, 74, 61, 2E, 46, 69, 6C, 74, 65, 72, 48, 61, 6E, 64, 6C, 65, 20, 29, 2E, 0A, 00, CC, 43, 61, 6E, 20, 6E, 6F, 74, 20, 46, 6C, 74, 43, 72, 65, 61, 74, 65, 43, 6F, 6D, 6D, 75, 6E, 69, 63, 61, 74, 69, 6F, 6E, 50, 6F, 72, 74, 2E, 0A, 00, CC, 5C, 00, 53, 00, 4D, 00...
 
[+]

Entropy:
0.7840

Code size:
21.5 KB (22,016 bytes)

Driver
Display name:
SMDC4COM

Type:
File system 'filter' driver (FileSystemDriver)

Group:
FSFilter Activity Monitor

Depends on:
FltMgr


Scan smdc4com.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.