tcpip.sys

TCP/IP Driver

Microsoft Corporation

It runs as a Windows kernel mode device driver named “TCP/IP Protocol Driver”. It is included with the Windows 7 OS.
Publisher:
Microsoft Corporation  (signed and verified)

Product:
Microsoft® Windows® Operating System

Description:
TCP/IP Driver

 
Part of the Windows 7 Operating System

Version:
6.1.7600.16385 (win7_rtm.090713-1255)

MD5:
5579dd18546999f5d0ec39d018726c6b

SHA-1:
536cd156e312c278c8e102c293874d002120e662

SHA-256:
82432bacee75c34f21222d9cc1607223c2940947118a63db239777a4b1442ad3

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
12/7/2016 9:46:33 AM UTC  (today)

File size:
1.2 MB (1,294,272 bytes)

Product version:
6.1.7600.16385

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
tcpip.sys.mui

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\tcpip.sys

Digital Signature
Authority:
Microsoft Corporation

Valid from:
5/16/2013 2:20:13 PM

Valid to:
8/16/2014 2:20:13 PM

Subject:
CN=Microsoft Windows, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Windows Verification PCA, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
3300000020C8E989174AADFCE6000000000020

File PE Metadata
Compilation timestamp:
4/4/2014 9:10:29 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
24576:zNilDeqgEsycrVUrqX8bAZWx4aHFcPIsIiXJJcZfvGipSwtwT:weRccywkAAxZlu3mZAeA

Entry address:
0x11C37C

Entry point:
8B, FF, 55, 8B, EC, E8, 7F, FC, FF, FF, 5D, 90, 90, 90, 90, 90, 8B, FF, 55, 8B, EC, 53, 56, 57, FF, 15, 18, 02, 0F, 00, 8B, 5D, 08, 33, FF, 57, 68, 0C, 3D, 10, 00, A3, B0, 7C, 10, 00, 89, 1D, 54, 7C, 10, 00, FF, 15, 1C, 02, 0F, 00, E8, C5, 3C, FE, FF, 8B, F0, 3B, F7, 0F, 8C, 0A, 01, 00, 00, E8, CC, 8A, EE, FF, 8B, F0, 3B, F7, 0F, 8C, F6, 00, 00, 00, 68, 58, 7C, 10, 00, 57, 57, 6A, 12, 57, 57, 53, FF, 15, 20, 02, 0F, 00, 8B, F0, 3B, F7, 0F, 8C, DA, 00, 00, 00, 57, 57, 57, 57, 68, 0C, 3D, 10, 00, FF, 15, 2C...
 
[+]

Entropy:
6.4312

Code size:
1011 KB (1,035,264 bytes)

Driver
Display name:
TCP/IP Protocol Driver

Service name:
Tcpip

Type:
Kernel device driver (KernelDriver)

Group:
PNP_TDI