home

secburn.sys

Protect Software GmbH

It runs as a Windows 64-bit kernel mode device driver named “secburn”.
Publisher:
Protect Software GmbH  (signed and verified)

Description:
SecureBurnDriver

Version:
1.0.1.101

MD5:
a8b5650a80b31812c9abc94d4eb36b76

SHA-1:
d3b4cafe2b4943c24ef4c59c98aff0a2c59aeb33

SHA-256:
65e776eba19ba3dca5753f2883acc9b0c465a8983a50d83d444330612821d2f4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/28/2024 4:51:52 PM UTC  (today)

File size:
101.4 KB (103,880 bytes)

Product version:
1.0.0.0

Copyright:
Copyright (C) 2006-2009

Original file name:
secburn.sys

File type:
Driver (Win64 SYS)

Language:
German (Germany)

Common path:
C:\Windows\System32\drivers\secburn.sys

Digital Signature
Signed by:
Protect Software GmbH

Authority:
GlobalSign nv-sa

Valid from:
7/18/2011 6:30:33 AM

Valid to:
11/13/2013 4:03:30 AM

Subject:
E=cert@protect-software.com, CN=Protect Software GmbH, O=Protect Software GmbH, L=Dortmund, S=NRW, C=DE

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121D4C609DCCB89F9E370E24902B676D4B8

File PE Metadata
Compilation timestamp:
4/5/2013 7:59:30 AM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
768:6PDGd00KnleL1WrzCR2Yu6H7Gl2Baho9S4AJKqBz8MZen8iv/272ejqi5K8l:hdXnLcrE2YuMaAN9S4A3U/Zi5F

Entry address:
0x17124

Entry point:
48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, C6, FE, FF, FF, CC, CC, 70, 71, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 6C, 75, 01, 00, 80, 35, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 78, 72, 01, 00, 00, 00, 00, 00, 90, 72, 01, 00, 00, 00, 00, 00, A8, 72, 01, 00, 00, 00, 00, 00, C4, 72, 01, 00, 00, 00, 00, 00, E4, 72, 01, 00, 00, 00, 00, 00, FC, 72, 01, 00, 00, 00, 00, 00, 10, 73, 01, 00...
 
[+]

Entropy:
3.6088

Code size:
15 KB (15,360 bytes)

Driver
Display name:
secburn

Type:
Kernel device driver (KernelDriver)

Group:
Filter


Scan secburn.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.