home

sndpnp.sys

Yusung Global Corp.

It runs as a Windows 64-bit kernel mode device driver named “SndPnp”.
Publisher:
Yusung Global Corp.  (signed and verified)

MD5:
b3230081081aa95f66fada22e8dc9999

SHA-1:
f8f8f7e85339a55b3da66b94a961dcb5286c727e

SHA-256:
e68b70540a676c3d8848f8e7abd7f612dac617bbd7a0def67836e4a555821da3

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 8:25:19 AM UTC  (today)

File size:
17.7 KB (18,080 bytes)

File type:
Driver (Win64 SYS)

Common path:
C:\Windows\System32\drivers\sndpnp.sys

Digital Signature
Signed by:
Yusung Global Corp.

Authority:
GlobalSign nv-sa

Valid from:
5/29/2013 1:38:42 PM

Valid to:
7/27/2014 1:39:29 PM

Subject:
CN=Yusung Global Corp., OU=Dev Team, O=Yusung Global Corp., L=Seo-gu, S=Gwangju, C=KR

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11215FA38AC9E0319E9A9EF941F50899710A

File PE Metadata
Compilation timestamp:
1/27/2014 4:26:02 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
192:Qjw3MiZxXpSCwgCVrR+ysf5h0rlZEJjJXcwVtVkUTgBxe1HCjjopmhh6qm+6nl0u:jrTGAjL0rlZyNXfIKpwDm35SadUb+sO

Entry address:
0x1DB0

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 81, EC, B0, 02, 00, 00, 48, 8D, 05, 97, 22, 00, 00, 33, F6, 48, 8B, D9, 48, 8D, 0D, 6B, 22, 00, 00, 8D, 56, 01, 45, 33, C0, 48, 89, 05, 86, 22, 00, 00, 48, 89, 05, 77, 22, 00, 00, 48, 89, 35, E0, 28, 00, 00, FF, 15, BA, 12, 00, 00, 48, 8D, 05, E3, FE, FF, FF, 48, 89, 74, 24, 30, 48, 89, 44, 24, 28, 48, 8D, 8C, 24, D8, 02, 00, 00, 45, 33, C9, 45, 33, C0, 33, D2, 48, 89, 74, 24, 20, FF, 15, CE, 12, 00, 00, 48, 8B, 8C, 24, D8, 02, 00, 00, 48, 8D, 05, FF, 21, 00...
 
[+]

Entropy:
6.4849

Code size:
7 KB (7,168 bytes)

Driver
Display name:
SndPnp

Type:
Kernel device driver (KernelDriver)

Group:
Boot Bus Extender


Scan sndpnp.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.