home

TTKrnllb_nt.sys

TT Private Kernel Mode Library

Tomiya Tanno

Publisher:
T.T  (signed by Tomiya Tanno)

Product:
TT Private Kernel Mode Library

Description:
TTKrnllb_nt

Version:
1.0.0.0

MD5:
560a9149d269a5973384c331e02fdbf8

SHA-1:
b00808612949771866985a410dec9865653d28b9

SHA-256:
56534efa9bce4869d3e7f423af7f7ddb90de8d43afebe2053f047463adcc4928

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/27/2024 4:22:56 AM UTC  (today)

File size:
18.8 KB (19,248 bytes)

Product version:
1.0.0.0

Copyright:
Copyright (C) 2011 T.T

Original file name:
TTKrnllb_nt.sys

File type:
Driver (Win32 SYS)

Digital Signature
Signed by:
Tomiya Tanno

Authority:
GlobalSign nv-sa

Valid from:
5/17/2010 9:19:06 PM

Valid to:
5/18/2011 9:19:02 PM

Subject:
CN=Tomiya Tanno, C=JP

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
01000000000128A669E75E

File PE Metadata
Compilation timestamp:
5/16/2011 1:27:58 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
384:OvOI6wGgNGSVHt6rx6+FGGpSnUz9tcGcH5R4Nh4kPYJLko92ZfdUb+/h:2OI6DSVH0FdGGpeLLi5

Entry address:
0x503E

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, FA, C5, FF, FF, CC, CC, C0, 50, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, A2, 54, 00, 00, 34, 30, 00, 00, 8C, 50, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, C2, 55, 00, 00, 00, 30, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 8E, 55, 00, 00, 74, 55, 00, 00, 5A, 55, 00, 00, 3E, 55, 00, 00, 24, 55, 00, 00, 10, 55, 00, 00, FC, 54, 00, 00, EA, 54, 00, 00, D6, 54, 00, 00, C2, 54, 00, 00, B0, 54, 00, 00, A8, 55, 00, 00, 00, 00...
 
[+]

Entropy:
6.5459

Code size:
8 KB (8,192 bytes)

Scan TTKrnllb_nt.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.