snapman.x64.sys

Acronis Snapshot API

ACRONIS INTERNATIONAL GMBH

It runs as a Windows 64-bit kernel mode device driver named “Acronis Snapshots Manager”.
Publisher:
ACRONIS INTERNATIONAL GMBH  (signed and verified)

Product:
Acronis Snapshot API

Version:
4.7.0.2541

MD5:
8275850aab5574e7f85202f4aede77da

SHA-1:
fa1af141b7b9c225a26876a6c17d251dd1726ecf

SHA-256:
a21c970e1b6477317c51f1a05238988075ae41f833a407465fa694dbd6c1b9e0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 1:38:28 AM UTC  (today)

File size:
361.3 KB (370,008 bytes)

Product version:
4.7.0.2541

Copyright:
Copyright © Acronis International GmbH, 2002-2013.

Trademarks:
Acronis International GmbH. All rights reserved.

Original file name:
snapman.sys

File type:
Driver (Win64 SYS)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\snapman.x64.sys

Digital Signature
Authority:
DigiCert Inc

Valid from:
9/4/2015 8:00:00 AM

Valid to:
9/12/2018 8:00:00 PM

Subject:
CN=ACRONIS INTERNATIONAL GMBH, O=ACRONIS INTERNATIONAL GMBH, L=Schaffhausen, C=CH

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
01B5ED0646A24C3AA3040E55B0E02BCF

File PE Metadata
Compilation timestamp:
2/6/2017 4:42:41 PM

OS version:
6.3

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
12.0

Entry address:
0x54000

Entry point:
48, 89, 5C, 24, 08, 57, 48, 83, EC, 20, 48, 8B, DA, 48, 8B, F9, E8, 17, 00, 00, 00, 48, 8B, D3, 48, 8B, CF, 48, 8B, 5C, 24, 30, 48, 83, C4, 20, 5F, E9, 9A, 62, FD, FF, CC, CC, 48, 8B, 05, CD, AF, FF, FF, 45, 33, C9, 49, B8, 32, A2, DF, 2D, 99, 2B, 00, 00, 48, 85, C0, 74, 05, 49, 3B, C0, 75, 38, 0F, 31, 48, C1, E2, 20, 48, 8D, 0D, A9, AF, FF, FF, 48, 0B, C2, 48, 33, C1, 48, 89, 05, 9C, AF, FF, FF, 66, 44, 89, 0D, 9A, AF, FF, FF, 48, 8B, 05, 8D, AF, FF, FF, 48, 85, C0, 75, 0A, 49, 8B, C0, 48, 89, 05, 7E, AF...
 
[+]

Entropy:
6.4638

Code size:
288 KB (294,912 bytes)

Driver
Display name:
Acronis Snapshots Manager

Service name:
snapman

Type:
Kernel device driver (KernelDriver)

Depends on:
fltsrv