home

TRUFOS.SYS

BitDefender Antivirus

BitDefender Test Certificate

It runs as a Windows file system device driver named “Trufos”.
Publisher:
BitDefender S.R.L.  (signed by BitDefender Test Certificate)

Product:
BitDefender Antivirus

Description:
Trufos Kernel Module

Version:
2.1.177.1939 Free Build built by: WinDDK

MD5:
3eedeae9cd097cadb310fbb0b9723f51

SHA-1:
827d18cfdb235a62c2bd15122e4fd7dfa7aafe0c

SHA-256:
5278a2d87202857adf25af594f47ec25b884fe28ae10a425f7e5328bc172ea3d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 1:05:42 AM UTC  (today)

File size:
245.6 KB (251,536 bytes)

Product version:
14.0.0.0

Copyright:
(c) 2010 BitDefender S.R.L.

Original file name:
TRUFOS.SYS

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\trufos.sys

Digital Signature
Signed by:
BitDefender Test Certificate

Authority:
BitDefender Test Certificate

Valid from:
7/3/2006 9:22:31 AM

Valid to:
1/1/2040 12:59:59 AM

Subject:
CN=BitDefender Test Certificate

Issuer:
CN=BitDefender Test Certificate

Serial number:
7FC26313C76955974374AE1D04108BD5

File PE Metadata
Compilation timestamp:
6/18/2010 10:57:23 AM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
3072:2HjT0UKmBnnoSbqXsocdjBux1a9yQO77y44nZ6bWND5k20RTQRtjtD7P+BBF9i6M:3kTM7I6bWJ5k2iQZQVzno

Entry address:
0x4103E

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 02, 03, FC, FF, CC, CC, 10, 11, 04, 00, 00, 00, 00, 00, 00, 00, 00, 00, 7A, 1A, 04, 00, 70, 70, 03, 00, FC, 10, 04, 00, 00, 00, 00, 00, 00, 00, 00, 00, CC, 1A, 04, 00, 5C, 70, 03, 00, A0, 10, 04, 00, 00, 00, 00, 00, 00, 00, 00, 00, 46, 1C, 04, 00, 00, 70, 03, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, AA, 1F, 04, 00, 70, 1F, 04, 00, 5A, 1F, 04, 00, 3E, 1F, 04, 00, 22, 1F, 04, 00, 0E, 1F, 04, 00, 28, 1C, 04, 00, 12, 1C...
 
[+]

Code size:
218 KB (223,232 bytes)

Driver
Display name:
Trufos

Description:
Trufos Mini-Filter Driver

Type:
File system 'filter' driver (FileSystemDriver)

Group:
FSFilter Activity Monitor

Depends on:
FltMgr


Scan TRUFOS.SYS - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.