» TeViiData.sys
Overview
Analysis
File Details
Behaviors (1)

TeViiData.sys

TeViiData

JacTek Multimedia Co. Ltd.

It runs as a Windows kernel mode device driver named “TeViiData Network Adapter Driver”.

File name:

TeViiData.sys

Publisher:

TeVii Technology, Ltd. (signed by JacTek Multimedia Co. Ltd.)

Product:

TeViiData

Description:

TeViiData Virtual Network Driver

Version:

3, 3, 0, 0

MD5:

8a7828602068a10a60a5dd7bbae96689

SHA-1:

971d7e48166a62c926215018781d42f793fce1ca

SHA-256:

2e59d5cb45344529415c282a97182fc4cd7a35597d0e6499492e91ba24b972b5

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/19/2024 11:34:15 PM UTC (a few moments ago)

File size:

17.3 KB (17,752 bytes)

Product version:

3, 3, 0, 0

TeVii Technology, Ltd.

Original file name:

TeViiData.sys

File type:

Driver (Win32 SYS)

Language:

English (United States)

Common path:

C:\Windows\System32\drivers\teviidata.sys

Digital Signature

Signed by:

JacTek Multimedia Co. Ltd.

Authority:

GlobalSign nv-sa

Valid from:

10/30/2009 3:50:18 AM

Valid to:

10/30/2010 3:50:18 AM

Subject:

CN=JacTek Multimedia Co. Ltd., O=JacTek Multimedia Co. Ltd., C=TW

Issuer:

CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:

01000000000124A3450002

File PE Metadata

Compilation timestamp:

6/7/2010 9:36:30 AM

OS version:

6.1

OS bitness:

Win32

Subsystem:

Native (none required)

Linker version:

9.0

CTPH (ssdeep):

384:c5XmYjWqx3RH67dTC7m84qspq8j+6NE54XdUb+m84f:mXmYjWbdCKk9C+3im8A

Entry address:

0x410D

Entry point:

8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, E9, FE, FF, FF, CC, CC, CC, F0, 41, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 96, 43, 00, 00, 80, 20, 00, 00, 70, 41, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, E0, 43, 00, 00, 00, 20, 00, 00, 80, 41, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 76, 46, 00, 00, 10, 20, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, B8, 43, 00, 00, A4, 43, 00, 00, CC, 43, 00, 00, 00, 00, 00, 00, 12, 46, 00, 00, 04, 46, 00, 00, EE, 45, 00, 00, D8... 
[+]

Entropy:

6.5624

Code size:

6 KB (6,144 bytes)

Driver

Display name:

TeViiData Network Adapter Driver

Service name:

MPEVirtual

Type:

Kernel device driver (KernelDriver)

Group:

NDIS

Scan TeViiData.sys - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.