drvagent32.sys

DriverAgent

eSupport.com, Inc

It runs as a Windows 64-bit kernel mode device driver named “DrvAgent32”.
Publisher:
Phoenix Technologies  (signed by eSupport.com, Inc)

Product:
DriverAgent

Description:
DriverAgent Direct I/O for 32-bit Windows

Version:
6.0

MD5:
5b131ed45be8f8803f977cc32125ea37

SHA-1:
4fcd82011c240061786d6380ac614b6ec880154b

SHA-256:
8a839afb2f599bed263c3c0f0eb1b85cce4fa178e1ac0b39e70cd8fa130f07e4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 2:32:09 AM UTC  (today)

File size:
29.8 KB (30,504 bytes)

Product version:
6.0

Copyright:
EnTech Taiwan, 1997-2009

Original file name:
Agent32.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\drvagent32.sys

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
8/20/2013 9:02:56 PM

Valid to:
8/21/2014 9:02:56 PM

Subject:
CN="eSupport.com, Inc", O="eSupport.com, Inc", L=North Andover, S=Massachusetts, C=US

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11213D2F2FB6B9005E295E3C9596B6442513

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
384:bASLH7iQvN8MD/9R9+t8wfWqgyhOY6FiNH7e8CUscml73ktnziTCnn2KtPLN1A5S:1D7RvNWjuiNnCUADUmGn2C1A6X

Entry point:
55, 8B, EC, 83, EC, 58, 56, E8, 02, F2, FF, FF, 8B, F0, B8, 00, 00, 00, C0, 8B, CE, 23, C8, 3B, C8, 75, 09, E8, 44, F2, FF, FF, 8B, C6, EB, 68, 53, BE, 19, 00, 02, 00, 6A, 40, 33, DB, 56, 53, 53, 68, 9A, 38, 01, 00, 6A, 02, 8D, 4D, A8, E8, A6, FA, FF, FF, 6A, 40, 56, 53, 53, 68, A6, 38, 01, 00, 6A, 01, 8D, 4D, D4, E8, 92, FA, FF, FF, 39, 5D, B0, 7C, 08, 88, 1D, C0, 2D, 01, 00, EB, 0B, 39, 5D, DC, 0F, 9D, C0, A2, C0, 2D, 01, 00, FF, 75, 0C, FF, 75, 08, E8, 33, 00, 00, 00, 8D, 4D, D4, 8B, F0, E8, EF, E9, FF...
 
[+]

Entropy:
6.3698

Developed / compiled with:
Microsoft Visual C++

Driver
Display name:
DrvAgent32

Type:
Kernel device driver (KernelDriver)


Scan drvagent32.sys - Powered by Reason Core Security