home

secburn.sys

Protect Software GmbH

It runs as a Windows kernel mode device driver named “secburn”.
Publisher:
Protect Software GmbH  (signed and verified)

Description:
SecureBurnDriver

Version:
1.0.1.101

MD5:
e4fd48312a79eb4357622012d9012d73

SHA-1:
e2d7c56efda2cc41c9394e8fb5da177f010c3f66

SHA-256:
1022bca0409d1309e8a329fb1d6118ae08ea78b3e642c8793f6bdfab3fe33671

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/28/2024 4:42:33 PM UTC  (today)

File size:
73.9 KB (75,720 bytes)

Product version:
1.0.0.0

Copyright:
Copyright (C) 2006-2009

Original file name:
secburn.sys

File type:
Driver (Win32 SYS)

Language:
German (Germany)

Common path:
C:\Windows\System32\drivers\secburn.sys

Digital Signature
Signed by:
Protect Software GmbH

Authority:
GlobalSign nv-sa

Valid from:
7/18/2011 5:30:33 PM

Valid to:
11/13/2013 4:03:30 PM

Subject:
E=cert@protect-software.com, CN=Protect Software GmbH, O=Protect Software GmbH, L=Dortmund, S=NRW, C=DE

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121D4C609DCCB89F9E370E24902B676D4B8

File PE Metadata
Compilation timestamp:
4/5/2013 7:18:07 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
768:cRts2v8xkceBaho9S4AJKqBz8MZ/8rOFh+2ejqiaDn:eNN9S4A3N7Ri2n

Entry address:
0xFCD7

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 1F, FF, FF, FF, CC, 2C, FD, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 3E, 01, 01, 00, 08, 38, 00, 00, 24, FD, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 60, 01, 01, 00, 00, 38, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 4C, 01, 01, 00, 00, 00, 00, 00, FC, FD, 00, 00, 14, FE, 00, 00, 24, FE, 00, 00, 44, FE, 00, 00, 60, FE, 00, 00, 7E, FE, 00, 00, 90, FE, 00, 00, AC, FE, 00, 00, C4, FE, 00, 00, E0, FE, 00, 00, F2, FE, 00...
 
[+]

Code size:
15 KB (15,360 bytes)

Driver
Display name:
secburn

Type:
Kernel device driver (KernelDriver)

Group:
Filter


Scan secburn.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.