home

gatekeeperdrv64.sys

XenoBot

Publisher:
XenoBot  (signed and verified)

MD5:
be9b77e68a56fe1e2cdd77a054391c43

SHA-1:
ef342f710961dbdd993c01ab848e81692b59f97c

SHA-256:
0ed87bdaeb84a461dc62c012f85b383d1bf512f34f80ee0481a16c55646206af

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 6:28:51 PM UTC  (today)

File size:
61.6 KB (63,032 bytes)

File type:
Driver (Win64 SYS)

Common path:
C:\Program Files\ondz\ondz\gatekeeperdrv64.sys

Digital Signature
Signed by:
XenoBot

Authority:
DigiCert Inc

Valid from:
4/28/2015 2:00:00 AM

Valid to:
6/1/2016 2:00:00 PM

Subject:
CN=XenoBot, O=XenoBot, L=Cupertino, S=California, C=US

Issuer:
CN=DigiCert SHA2 Assured ID Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0B60A5B3538177FEF22CAFB617B88C39

File PE Metadata
Compilation timestamp:
10/26/2014 6:54:13 PM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
8.0

Entry address:
0x1110

Entry point:
48, 89, 54, 24, 10, 48, 89, 4C, 24, 08, 48, 83, EC, 28, 48, 8B, 4C, 24, 30, E8, A8, 93, 00, 00, 0F, B6, C0, 85, C0, 75, 0A, B8, 01, 00, 00, C0, E9, CB, 00, 00, 00, 48, 8B, 44, 24, 30, 48, 8D, 0D, 8B, FF, FF, FF, 48, 89, 48, 70, 48, 8B, 44, 24, 30, 48, 8D, 0D, 7B, FF, FF, FF, 48, 89, 88, 80, 00, 00, 00, 48, 8B, 44, 24, 30, 48, 8D, 0D, 28, FE, FF, FF, 48, 89, 88, E0, 00, 00, 00, E8, 8C, 80, 00, 00, 0F, B6, C0, 85, C0, 74, 10, 48, 8B, 44, 24, 30, 48, 8D, 0D, B9, FD, FF, FF, 48, 89, 48, 68, 48, 8B, 4C, 24, 30...
 
[+]

Code size:
51.4 KB (52,640 bytes)

Scan gatekeeperdrv64.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.