devcon.exe

Windows Server 2003 DDK driver

Shanghai Best Oray Information Technology Co., Ltd.

Publisher:
Windows (R) Server 2003 DDK provider  (signed by Shanghai Best Oray Information Technology Co., Ltd.)

Product:
Windows (R) Server 2003 DDK driver

Description:
Windows Setup API

Version:
5.2.3790.1830 built by: WinDDK

MD5:
841333b4af2be14244f9b9a5274835c9

SHA-1:
0be42a0697919108543f3eb78de83b56ed7002a7

SHA-256:
6212f4b95cb57e0273cb5b85e9bdfa536c146924748e6e7ade9a5e20c6620489

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/28/2024 9:53:09 AM UTC  (today)

File size:
88.5 KB (90,576 bytes)

Product version:
5.2.3790.1830

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
SETUPAPI.DLL

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\drivers\win64\devcon.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
6/17/2015 8:00:00 AM

Valid to:
7/17/2018 7:59:59 AM

Subject:
CN="Shanghai Best Oray Information Technology Co., Ltd.", O="Shanghai Best Oray Information Technology Co., Ltd.", L=Shanghai, S=Shanghai, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6B9709444F0B7C65BF8DBDE0CEBD139F

File PE Metadata
Compilation timestamp:
12/23/2010 5:23:50 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows Console

Linker version:
8.0

CTPH (ssdeep):
768:jbUssnCCjUi4bc39ZEJcVkUwwi+hfLnjFyo6t77Gqodof182BSOe9oKSJ2SLD0By:Essn3wuZEJOkn+h/wo6t7qXof1F4O7WC

Entry address:
0x7910

Entry point:
48, 83, EC, 58, 48, 89, 5C, 24, 70, 48, 89, 7C, 24, 78, 66, 81, 3D, D9, 86, FF, FF, 4D, 5A, 74, 08, 33, DB, 89, 5C, 24, 60, EB, 7C, 48, 63, 05, 04, 87, FF, FF, 48, 8D, 0D, C1, 86, FF, FF, 48, 03, C1, 81, 38, 50, 45, 00, 00, 74, 08, 33, DB, 89, 5C, 24, 60, EB, 5B, 0F, B7, 48, 18, 81, F9, 0B, 01, 00, 00, 74, 32, 81, F9, 0B, 02, 00, 00, 74, 08, 33, DB, 89, 5C, 24, 60, EB, 3F, 83, B8, 84, 00, 00, 00, 0E, 77, 08, 33, DB, 89, 5C, 24, 60, EB, 2E, 33, DB, 39, 98, F8, 00, 00, 00, 0F, 95, C3, 89, 5C, 24, 60, EB, 1D...
 
[+]

Entropy:
5.2316

Code size:
33 KB (33,792 bytes)

Scan devcon.exe - Powered by Reason Core Security