GUMHFilter.sys

Glarysoft

Glarysoft LTD

It runs as a Windows file system device driver named “GUMHFilters”.
Publisher:
Glarysoft LTD  (signed and verified)

Product:
Glarysoft

Description:
GUMHFilter Driver

Version:
1.0.0.2

MD5:
e432f7f3ed95e75e9dd3fc8e370e2e84

SHA-1:
7135e83d9fdaa0b7df09917ebb2e754154e19a86

SHA-256:
7d536077da3f832c8f4185321ed5a1445b6d518f82080e3281e81057f9c6908a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 1:44:37 AM UTC  (today)

File size:
37.6 KB (38,456 bytes)

Product version:
1.0.0.2

Copyright:
Copyright (c) 2003-2016 Glarysoft Ltd

Original file name:
GUMHFilter.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Program Files\glarysoft\malware hunter\native\winxp_x86\gumhfilter.sys

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
1/20/2016 7:00:00 PM

Valid to:
1/1/2019 6:59:59 PM

Subject:
CN=Glarysoft LTD, O=Glarysoft LTD, L=Beijing, S=Beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2051DD6C5D5A858EBA1974D70B224A2F

File PE Metadata
Compilation timestamp:
10/20/2016 11:07:59 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
384:gms+u6e6BuOL66fNp++vGAF2gDwSLh9+agpTW4rnyIDDKbM5nYPLptUHeMTxu9Oa:A6fW+vPFhDHPgZbDKw53x6whYP

Entry address:
0x463E

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 38, FF, FF, FF, CC, CC, 24, 47, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 0E, 4C, 00, 00, 84, 0C, 00, 00, 14, 47, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 5C, 4C, 00, 00, 74, 0C, 00, 00, A0, 46, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 0E, 4F, 00, 00, 00, 0C, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, E4, 4E, 00, 00, CE, 4E, 00, 00, B6, 4E, 00, 00, A2, 4E, 00, 00, 8E, 4E, 00, 00, 6A, 4E, 00, 00, 4C, 4E, 00, 00, 30, 4E...
 
[+]

Entropy:
6.4683

Code size:
13.4 KB (13,696 bytes)

Driver
Display name:
GUMHFilters

Type:
File system 'filter' driver (FileSystemDriver)


Scan GUMHFilter.sys - Powered by Reason Core Security