home

windrvr6.sys

WinDriver Device Driver (x64)

PoLabs Certificate

It runs as a Windows 64-bit kernel mode device driver named “WinDriver6”.
Publisher:
Jungo  (signed by PoLabs Certificate)

Product:
WinDriver Device Driver (x64)

Description:
WinDriver Device Driver 10.10

Version:
10.10 built by: WinDDK

MD5:
e40d5cded8342d98f89c380ead69ae99

SHA-1:
3adc1ca4b42d0a74c3c45e84b87306d11a642bbb

SHA-256:
bbeaeb1f288eea2ebf0bfbd2efc90549af7ff88d2ef3dbec1780c093ecaf4738

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 11:00:03 AM UTC  (today)

File size:
251.8 KB (257,824 bytes)

Product version:
10.10

Copyright:
Jungo Confidential. Copyright (c) 2009 Jungo Ltd. http://www.jungo.com

Original file name:
windrvr6.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\windrvr6.sys

Digital Signature
Signed by:
PoLabs Certificate

Authority:
PoLabs Certificate

Valid from:
11/7/2009 3:32:53 PM

Valid to:
12/31/2039 11:59:59 PM

Subject:
CN=PoLabs Certificate

Issuer:
CN=PoLabs Certificate

Serial number:
4A632E8D5C4D03A04D97F6041A8EE1AA

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
3072:7y+CNxD/qfeGkmnVzZCALKq/Tt/1NXWPIRP53x2WO1B/beOKRYg2ZFplpU5IW:7MDIeGkSVMAmA/1NWmRh2NB/qOb9bBo

Entry point:
48, 8B, 05, F9, C3, FF, FF, 49, B9, 32, A2, DF, 2D, 99, 2B, 00, 00, 48, 85, C0, 74, 05, 49, 3B, C1, 75, 2F, 4C, 8D, 05, DE, C3, FF, FF, 48, B8, 20, 03, 00, 00, 80, F7, FF, FF, 48, 8B, 00, 49, 33, C0, 49, B8, FF, FF, FF, FF, FF, FF, 00, 00, 49, 23, C0, 49, 0F, 44, C1, 48, 89, 05, B6, C3, FF, FF, 48, F7, D0, 48, 89, 05, B4, C3, FF, FF, E9, 3F, 2B, FC, FF, CC, CC, CC, B8, 10, 04, 00, 00, 00, 00, 00, 00, 00, 00, 00, 88, 12, 04, 00, 18, A0, 03, 00, A0, 10, 04, 00, 00, 00, 00, 00, 00, 00, 00, 00, E0, 12, 04, 00...
 
[+]

Driver
Display name:
WinDriver6

Type:
Kernel device driver (KernelDriver)


Scan windrvr6.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.