home

eusbmon.sys

Eltima Software

It runs as a Windows kernel mode device driver named “Eltima usb monitor”.
Publisher:
Eltima Software  (signed and verified)

MD5:
8eca67910a18204eae58cbf898e8aedd

SHA-1:
b30c0dc59a0573422c98ea197811684f2f246abf

SHA-256:
bc8abefac89af0eb6d39a1b8c2bb96b642f3347f9ee92746cdb6caf1e823b2db

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 1:36:08 AM UTC  (today)

File size:
51.5 KB (52,736 bytes)

File type:
Driver (Win32 SYS)

Common path:
C:\windows\eusbmon.sys

Digital Signature
Signed by:
Eltima Software

Authority:
VeriSign, Inc.

Valid from:
4/18/2013 9:00:00 AM

Valid to:
5/19/2015 8:59:59 AM

Subject:
CN=Eltima Software, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Eltima Software, L=Zaporizhzhya, S=Ukraine, C=UA

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2150551EE60959A502D2C40EF744905B

File PE Metadata
Compilation timestamp:
6/25/2014 4:40:46 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

Entry address:
0x9DBE

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, EC, 6A, FF, FF, CC, CC, 1C, 9E, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 7C, A3, 00, 00, 10, 99, 00, 00, 0C, 9E, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, C6, A3, 00, 00, 00, 99, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 9E, A3, 00, 00, 8A, A3, 00, 00, B2, A3, 00, 00, 00, 00, 00, 00, 50, 9F, 00, 00, 64, 9F, 00, 00, 6E, 9F, 00, 00, 78, 9F, 00, 00, 8E, 9F, 00, 00, A6, 9F, 00, 00, BC, 9F, 00, 00, CE, 9F, 00, 00, E6, 9F...
 
[+]

Entropy:
6.8045

Code size:
38.8 KB (39,680 bytes)

Driver
Display name:
Eltima usb monitor

Service name:
eusbmon

Type:
Kernel device driver (KernelDriver)


Scan eusbmon.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.