home

TabletDriver.exe

TabletDriver

Shenzhen Huion Animation Technology Co.,LTD

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘TabletDriver’.
Publisher:
Graphic Tablet Company Shenzhen  (signed by Shenzhen Huion Animation Technology Co.,LTD)

Product:
TabletDriver

Version:
12, 1, 10, 0

MD5:
448bb8473b0fe48fa86278f3c6c309d1

SHA-1:
4292e756cb867b0917add75e2b9500f11275e0b8

SHA-256:
48add22c6d6f2bc3d891495ae330d001f4b4f66a0d248ebb3a7f7f63146e3fd0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 4:18:04 PM UTC  (today)

File size:
507.7 KB (519,880 bytes)

Product version:
12, 1, 10, 0

Copyright:
TabletDriver(c) . All rights reserved.

Original file name:
TabletDriver.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\pentabletdriver\tabletdriver.exe

Digital Signature
Signed by:
Shenzhen Huion Animation Technology Co.,LTD

Authority:
Symantec Corporation

Valid from:
2/2/2015 5:30:00 AM

Valid to:
2/3/2016 5:29:59 AM

Subject:
CN="Shenzhen Huion Animation Technology Co.,LTD", O="Shenzhen Huion Animation Technology Co.,LTD", L=Shenzhen, S=Guangdong, C=CN

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
4E659FB1DABC40A03D0FD8A61B3609A3

File PE Metadata
Compilation timestamp:
11/26/2015 6:09:21 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:yCBjVu1pbYUTkU5TcLdKj2MMgemnMzCrhEGbpiO7GlLJtvnbVw:49IU5ILdKBnIClT7Gldtve

Entry address:
0x2DD21

Entry point:
E8, 1A, 43, 00, 00, E9, 79, FE, FF, FF, 3B, 0D, 20, E6, 45, 00, 75, 02, F3, C3, E9, 9C, 43, 00, 00, 6A, 0C, 68, 38, 99, 45, 00, E8, 6E, 1C, 00, 00, 83, 65, E4, 00, 8B, 75, 08, 3B, 35, EC, 71, 46, 00, 77, 22, 6A, 04, E8, FC, 45, 00, 00, 59, 83, 65, FC, 00, 56, E8, 03, 4E, 00, 00, 59, 89, 45, E4, C7, 45, FC, FE, FF, FF, FF, E8, 09, 00, 00, 00, 8B, 45, E4, E8, 7A, 1C, 00, 00, C3, 6A, 04, E8, F7, 44, 00, 00, 59, C3, 8B, FF, 55, 8B, EC, 56, 8B, 75, 08, 83, FE, E0, 0F, 87, A1, 00, 00, 00, 53, 57, 8B, 3D, 40, 81...
 
[+]

Entropy:
6.2498

Code size:
281.5 KB (288,256 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
TabletDriver

Command:
C:\Program Files\pentabletdriver\tabletdriver.exe -hide


Scan TabletDriver.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.