home

us800drv.sys

TEAC Corporation

It runs as a Windows kernel mode device driver named “Service for US-800 Driver”.
Publisher:
TEAC Corporation  (signed and verified)

MD5:
4bcc48a2ad71507c4695f82a196a7624

SHA-1:
53fa513904049411b20e320e2267a67cada8d1b1

SHA-256:
4d24a52f8aa434c96f7664c09d081add77737b306fb94ff28dda7b3fe735dda8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 3:11:52 AM UTC  (today)

File size:
71.1 KB (72,792 bytes)

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\us800drv.sys

Digital Signature
Signed by:
TEAC Corporation

Authority:
VeriSign, Inc.

Valid from:
3/1/2010 1:00:00 AM

Valid to:
3/1/2011 12:59:59 AM

Subject:
CN=TEAC Corporation, OU=TASCAM, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=TEAC Corporation, L=Musashino, S=Tokyo, C=JP

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6BBCF302F0C1AB90D468CA448CD4C509

File PE Metadata
Compilation timestamp:
1/7/2011 9:41:26 PM

OS version:
5.2

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
1536:26uL5oBQ14onqzcThISlVGKK0qbVrjuMbQB9bMoq/KCpoDZ:luL58QqivhIiRrqVjuMbs9bjBN

Entry address:
0xD010

Entry point:
8B, FF, 56, 8B, 35, 40, E0, 01, 00, 6A, 00, 6A, 01, FF, D6, 84, C0, 75, 09, B8, 01, 00, 00, C0, 5E, C2, 08, 00, 6A, 10, 6A, 01, FF, D6, 8B, 74, 24, 0C, 84, C0, 0F, 94, C0, A2, 78, 12, 02, 00, 0F, B7, 0E, 68, 52, 57, 4F, 50, 83, C1, 02, 51, 6A, 01, FF, 15, F8, E0, 01, 00, A3, 74, 12, 02, 00, 85, C0, 75, 09, B8, 9A, 00, 00, C0, 5E, C2, 08, 00, 66, 8B, 16, 56, 66, 83, C2, 02, 68, 70, 12, 02, 00, 66, 89, 15, 72, 12, 02, 00, FF, 15, 58, E0, 01, 00, 0F, B7, 06, 8B, 15, 74, 12, 02, 00, D1, E8, 33, C9, 66, 89, 0C...
 
[+]

Code size:
49 KB (50,176 bytes)

Driver
Display name:
Service for US-800 Driver

Service name:
US800_AA

Type:
Kernel device driver (KernelDriver)


Scan us800drv.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.