» vga2usb.sys
Overview
Analysis
File Details
Behaviors (1)

vga2usb.sys

Epiphan Capture

Epiphan Systems Inc.

It runs as a Windows kernel mode device driver named “Epiphan VGA2USB”.

File name:

vga2usb.sys

Publisher:

Epiphan Systems Inc. (signed and verified)

Product:

Epiphan Capture

Description:

Epiphan Capture USB driver

Version:

3.29.0.4

MD5:

b341285a587b26f2bca909cf26ecd12c

SHA-1:

d8f5fe0cd868905ec9e240e9971e027c74cc174e

SHA-256:

a75f7c5fe72f37a7209ae05fa63148e944fbfeb1427b34ca2127c9031f7d1cf1

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/25/2024 3:28:29 PM UTC (today)

File size:

1.6 MB (1,633,216 bytes)

File type:

Driver (Win32 SYS)

Language:

English (United States)

Common path:

C:\Windows\System32\drivers\vga2usb.sys

Digital Signature

Signed by:

Epiphan Systems Inc.

Authority:

GlobalSign nv-sa

Valid from:

5/21/2012 10:47:30 PM

Valid to:

7/27/2015 11:07:56 PM

Subject:

E=info@epiphan.com, CN=Epiphan Systems Inc., O=Epiphan Systems Inc., L=Ottawa, S=Ontario, C=CA

Issuer:

CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:

112143BBBB0A9387E0CF5773ADEF0E070EE4

File PE Metadata

Compilation timestamp:

4/25/2014 9:49:30 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Native (none required)

Linker version:

8.0

CTPH (ssdeep):

24576:rOK9KzYkSfdxz87j/0T+WpRSGHL32xWiCCFlkQoWm6Q4wJQhHVw6zhxUkTLUZ:YSFzL3UCCLkQNaRQRl5TAZ

Entry address:

0x8E80

Entry point:

56, 57, E8, C9, F7, 02, 00, E8, 54, FF, 02, 00, 6A, 04, 6A, 00, 6A, 1D, 6A, 03, 68, 4C, F9, 04, 00, 6A, 01, E8, 00, 56, 00, 00, 8B, 7C, 24, 28, 8B, 74, 24, 24, 83, C4, 18, 6A, 00, 57, 89, 35, AC, AA, 19, 00, E8, 07, E3, 02, 00, A3, B0, AA, 19, 00, E8, 7D, FF, FF, FF, 68, 28, F9, 04, 00, 57, 56, FF, 15, 70, D0, 04, 00, 8B, 46, 38, 8B, 4E, 40, 8B, 56, 44, A3, 9C, AA, 19, 00, 8B, 46, 70, A3, A8, AA, 19, 00, 89, 0D, A0, AA, 19, 00, 8B, 4E, 34, 89, 0D, 98, AA, 19, 00, 5F, C7, 46, 38, C0, 8A, 01, 00, C7, 46, 40... 
[+]

Entropy:

7.7666 (probably packed)

Code size:

242 KB (247,808 bytes)

Driver

Display name:

Epiphan VGA2USB

Service name:

VGA2USB

Type:

Kernel device driver (KernelDriver)

Group:

Base

Scan vga2usb.sys - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.