home

vsdatant.sys

TrueVector Device Driver

Check Point Software Technologies Inc.

It runs as a Windows kernel mode device driver named “vsdatant”.
Publisher:
Zone Labs, LLC  (signed by Check Point Software Technologies Inc.)

Product:
TrueVector Device Driver

Version:
6.5.063.218

MD5:
ca0ed9ba21cf59ad99755ca72d03b8b1

SHA-1:
578a2751bc93aac94e4f39cb33b1b36e3f34a978

SHA-256:
e1a52c0d63bd0cbb92d4baa57bb40b4eb1a16946da37900eb86dc2943f8e45ac

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
7/13/2025 8:25:34 PM UTC  (today)

File size:
376 KB (385,064 bytes)

Product version:
6.5.063.218

Copyright:
Copyright © 1998-2006, Zone Labs, LLC

Original file name:
vsdatant.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\vsdatant.sys

Digital Signature
Signed by:
Check Point Software Technologies Inc.

Authority:
VeriSign, Inc.

Valid from:
12/20/2007 5:30:00 AM

Valid to:
12/20/2008 5:29:59 AM

Subject:
CN=Check Point Software Technologies Inc., OU=Digital ID Class 3 - Microsoft Software Validation v2, OU=MIS-US, O=Check Point Software Technologies Inc., L=Redwood City, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
44740CE3BE5E76790A110442B8582370

File PE Metadata
Compilation timestamp:
6/10/2008 12:01:25 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
6.0

CTPH (ssdeep):
6144:sukZpiPfugTLD9Fqi5JPM/DKYEXDj8gwZPDGNccuVNExl:sxZpiPDL9gYkD/PncuVml

Entry address:
0x163EC

Entry point:
83, EC, 70, 53, 55, 56, 57, B9, 08, 00, 00, 00, BE, 40, 60, 02, 00, 8D, 7C, 24, 30, 33, DB, F3, A5, 66, A5, B9, 0A, 00, 00, 00, BE, 64, 60, 02, 00, 8D, 7C, 24, 54, 68, 88, B9, 05, 00, F3, A5, 68, 84, B9, 05, 00, C7, 44, 24, 28, 16, 00, 00, 00, 66, A5, C7, 44, 24, 2C, 20, 00, 00, 00, C7, 44, 24, 30, 37, 00, 00, 00, 89, 5C, 24, 34, E8, 4C, A4, 01, 00, E8, 4D, F9, 02, 00, E8, C2, BB, FE, FF, 8B, B4, 24, 84, 00, 00, 00, 89, 35, 6C, B7, 05, 00, E8, B0, B2, FE, FF, E8, 7B, B6, 02, 00, E8, 84, 68, 00, 00, 8B, 3D...
 
[+]

Entropy:
5.9057

Code size:
289.6 KB (296,512 bytes)

Driver
Display name:
vsdatant

Type:
Kernel device driver (KernelDriver)


Scan vsdatant.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.