home

SbieDrv.sys

Sandboxie

SANDBOXIE L.T.D

It runs as a Windows kernel mode device driver named “SbieDrv”.
Publisher:
SANDBOXIE L.T.D  (signed and verified)

Product:
Sandboxie

Description:
Sandboxie Kernel Mode Driver

Version:
3.63.02

MD5:
98ea46e99a89065d073ba7000f776105

SHA-1:
dc67a5af72cbc1d7b44de9670449b5b2e99348c8

SHA-256:
fecd8ffa571a190567dc0d5569364d8c83c90e910abdf6981d285dc99b2db34b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/4/2024 4:59:26 PM UTC  (today)

File size:
128.8 KB (131,856 bytes)

Product version:
3.63.02

Copyright:
Copyright © 2004-2011 by Ronen Tzur

Original file name:
SbieDrv.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Program Files\sandboxie\sbiedrv.sys

Digital Signature
Signed by:
SANDBOXIE L.T.D

Authority:
GlobalSign nv-sa

Valid from:
10/28/2010 1:34:15 PM

Valid to:
2/4/2013 5:10:10 PM

Subject:
CN=SANDBOXIE L.T.D, O=SANDBOXIE L.T.D, L=Holon, S=Israel, C=IL

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000012BF299E10C

File PE Metadata
Compilation timestamp:
12/26/2011 11:34:36 AM

OS version:
5.2

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
7.10

Entry address:
0x1B84A

Entry point:
55, 8B, EC, 8B, 45, 08, 53, 57, A3, 9C, AB, 02, 00, 33, FF, 89, 78, 34, E8, 89, FA, FF, FF, 8A, D8, 84, DB, 0F, 84, FB, 00, 00, 00, E8, EE, 0B, FF, FF, 3B, C7, A3, 98, A7, 02, 00, 75, 0E, 57, 57, 68, 50, 04, 01, C1, E8, D9, 6A, FF, FF, 32, DB, 84, DB, 0F, 84, D7, 00, 00, 00, E8, 3E, 91, FE, FF, 8A, D8, 84, DB, 0F, 84, C8, 00, 00, 00, 56, 8B, 75, 0C, 6A, 01, FF, 76, 04, FF, 35, 98, A7, 02, 00, E8, 2C, 6B, FF, FF, 3B, C7, A3, A0, AB, 02, 00, 75, 02, 32, DB, 84, DB, 0F, 84, A0, 00, 00, 00, 8B, C6, E8, FC, FA...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
108.5 KB (111,104 bytes)

Driver
Display name:
SbieDrv

Type:
Kernel device driver (KernelDriver)


Scan SbieDrv.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.