wtfilter_7398.sys

Zimin Sergei Aleksandrovich IP

It runs as a Windows 64-bit kernel mode device driver named “wtfilter_7398”.
Publisher:
Zimin Sergei Aleksandrovich IP  (signed and verified)

MD5:
7924fa642204a2d2df584abb39bf2bd6

SHA-1:
a72f08ef84f646bea1b6e82cf5694433ef6274de

SHA-256:
3ff44ed63fa1254af71ba3644312f83c4572a0b87bec7e7e9492958a14cb9667

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 6:17:48 PM UTC  (today)

File size:
74.9 KB (76,688 bytes)

File type:
Driver (Win64 SYS)

Common path:
C:\Windows\System32\drivers\wtfilter_7398.sys

Digital Signature
Authority:
Symantec Corporation

Valid from:
5/20/2015 6:00:00 AM

Valid to:
5/20/2017 5:59:59 AM

Subject:
CN=Zimin Sergei Aleksandrovich IP, O=Zimin Sergei Aleksandrovich IP, L=Murom, S=Vladimir rgn., C=RU

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
24B85168F1A2FE0B6F5B1631144D74E7

File PE Metadata
Compilation timestamp:
9/18/2016 6:52:38 AM

OS version:
6.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
11.0

Entry address:
0xD190

Entry point:
48, 89, 5C, 24, 08, 57, 48, 83, EC, 20, 48, 8B, DA, 48, 8B, F9, E8, 63, 5E, 00, 00, 48, 8B, D3, 48, 8B, CF, 48, 8B, 5C, 24, 30, 48, 83, C4, 20, 5F, E9, 76, C9, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 66, 66, 0F, 1F, 84, 00, 00, 00, 00, 00, 48, 3B, 0D, 79, 34, 00, 00, 75, 12, 48, C1, C1, 10, 66, F7, C1, FF, FF, 75, 03, C2, 00, 00, 48, C1, C9, 10, E9, 08, 00, 00, 00, CC, CC, CC, CC, CC, CC, CC, CC, B9, 02, 00, 00, 00, CD, 29, CC, CC, CC, CC, CC, CC, CC, CC, CC, B9, 08, 00, 00, 00, CD, 29, CC...
 
[+]

Code size:
54 KB (55,296 bytes)

Driver
Display name:
wtfilter_7398

Type:
Kernel device driver (KernelDriver)

Group:
PNP_TDI


Scan wtfilter_7398.sys - Powered by Reason Core Security