a08ee79f-801d-4b98-996f-55f6a72ac5f7

CP2X72C.SYS

Description

The Carbon Black Threat Analysis Unit (TAU) discovered 34 unique vulnerable drivers (237 file hashes) accepting firmware access. Six allow kernel memory access. All give full control of the devices to non-admin users. By exploiting the vulnerable drivers, an attacker without the system privilege may erase/alter firmware, and/or elevate privileges. As of the time of writing in October 2023, the filenames of the vulnerable drivers have not been made public until now.

UUID: a08ee79f-801d-4b98-996f-55f6a72ac5f7
Created: 2023-11-02
Author: Takahiro Haruyama
Acknowledgement: |

Download Block

This download link contains the vulnerable driver!

Commands

sc.exe create CP2X72CSYS binPath= C:\windows\temp\CP2X72CSYS.sys type=kernel &amp;&amp; sc.exe start CP2X72CSYS

Use Case	Privileges	Operating System
Elevate privileges	kernel	Windows 10

Detections

YARA 🏹

Expand

Exact Match

with header and size limitation

Threat Hunting

without header and size limitation

Renamed

for renamed driver files

Sigma 🛡️

Expand

Names

detects loading using name only

Hashes

detects loading using hashes only

Sysmon 🔎

Expand

Block

on hashes

Alert

on hashes

Resources

https://blogs.vmware.com/security/2023/10/hunting-vulnerable-kernel-drivers.html

Known Vulnerable Samples

Property	Value
Filename
Creation Timestamp	2020-03-25 22:53:21
MD5	c8d3784a3ab7a04ad34ea0aba32289ca
SHA1	8b63eb0f5dbb844ee5f6682f0badef872ae569bf
SHA256	05c15a75d183301382a082f6d76bf3ab4c520bf158abca4433d9881134461686
Authentihash MD5	cd3000188fccd86bdd61590fbdf952e1
Authentihash SHA1	eb4ea030ab0bd3b78ef513c39bd6a9c84a723962
Authentihash SHA256	145b3490f5d3f45dc014d8c14112e9973796024ef1e896a10998f08bba45d8e5
RichPEHeaderHash MD5	392105478261191dc6112bb08d97b499
RichPEHeaderHash SHA1	ea819d9ecaeed60cb8b4543baa87ab9f1c9d3c10
RichPEHeaderHash SHA256	c5295a6a29894b43be50051e75c63cf3624590f4307694e80f6d3fc3770dd760
Company	Interface Corporation
Description	GPC-2X72C I/O Module Device Driver
Product	GPC-2X72C DIO-BM(PCI/C-PCI)
OriginalFilename	CP2X72C.SYS

Download

Certificates

Expand

Certificate 191a32cb759c97b8cfac118dd5127f49

Field	Value
ToBeSigned (TBS) MD5	788b61bd26da89253179e3de2cdb527f
ToBeSigned (TBS) SHA1	7d06f16e7bf21bce4f71c2cb7a3e74351451bf69
ToBeSigned (TBS) SHA256	b3c925b4048c3f7c444d248a2b101186b57cba39596eb5dce0e17a4ee4b32f19
Subject	C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Extended Validation Code Signing CA , G2
ValidFrom	2014-03-04 00:00:00
ValidTo	2024-03-03 23:59:59
Signature	3f5b19f3fa13d575382a5aee9f5aa04ca91dc5cc94eede15fef5106ea41ba56483541858c40b28a185c34e74e5ff897cfed5ed3cba719f5602268f162a88feb0a32722ce4be2388e00a63a865f9de53ea8de644941744121fd07c88417da1d653082cb264f39d60427a481b14b49c3238b7e02321827b7ab0bf31872b6a4ee67066f38a6588de0f17e5da460c6a8e5505fe0e8bae28f9958b6b5a0a876f1a2f11c8841727e52979b0a36998d50f701eb3ce7f0226ae5358c63368a1ab1d967665f971aefa8209df02fba6cced9948500f158f17dc97c22b5075d02c6e60bbfab9393ff27188e33367e5734f1c3af04c184f156b3e8878336f8d30a31dc6e2c6d
SignatureAlgorithmOID	1.2.840.113549.1.1.11
IsCertificateAuthority	True
SerialNumber	191a32cb759c97b8cfac118dd5127f49
Version	3

Certificate 6ec713048249f5421753b77c2796320f

Field	Value
ToBeSigned (TBS) MD5	899ac369826f1405bd7bf55c1d034016
ToBeSigned (TBS) SHA1	27edea8e430cad6d62f38aa060eaa042c4e8c9ed
ToBeSigned (TBS) SHA256	e9a0d18bbc667e7267f40aab5d2fc592ad72b4520f89474e1ca3d05f9af004d5
Subject	??=JP, ??=Private Organization, serialNumber=2400,01,000873, C=JP, ST=Hiroshima, L=Hiroshima, O=Interface Corporation, OU=Development department, CN=Interface Corporation
ValidFrom	2019-05-11 00:00:00
ValidTo	2021-05-10 23:59:59
Signature	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
SignatureAlgorithmOID	1.2.840.113549.1.1.11
IsCertificateAuthority	False
SerialNumber	6ec713048249f5421753b77c2796320f
Version	3

Imports

Expand

ntoskrnl.exe
HAL.dll

Imported Functions

Expand

ExAllocatePool
RtlInitUnicodeString
memset
IoCreateSymbolicLink
RtlAppendUnicodeToString
IoDeleteSymbolicLink
ZwClose
ZwQueryValueKey
IoOpenDeviceRegistryKey
memcpy
KeClearEvent
IoFreeIrp
IoAllocateIrp
ZwSetValueKey
IoGetDmaAdapter
READ_REGISTER_UCHAR
READ_REGISTER_USHORT
READ_REGISTER_ULONG
WRITE_REGISTER_UCHAR
WRITE_REGISTER_USHORT
WRITE_REGISTER_ULONG
IoConnectInterrupt
MmMapIoSpace
PoRequestPowerIrp
RtlIntegerToUnicodeString
IoCreateDevice
MmUnmapIoSpace
KeRemoveQueueDpc
IoDisconnectInterrupt
IoInitializeRemoveLockEx
IoDeleteDevice
IoAttachDeviceToDeviceStack
IoDetachDevice
IoReleaseRemoveLockAndWaitEx
IoReleaseRemoveLockEx
IoAcquireRemoveLockEx
MmUnlockPagableImageSection
MmLockPagableDataSection
IoStartPacket
IoReleaseCancelSpinLock
IoFreeMdl
MmUnmapLockedPages
IoAcquireCancelSpinLock
KeInsertQueueDpc
KeSynchronizeExecution
IoStartNextPacket
KefReleaseSpinLockFromDpcLevel
KefAcquireSpinLockAtDpcLevel
KeTickCount
KeBugCheckEx
RtlAppendUnicodeStringToString
ExFreePoolWithTag
IofCallDriver
KeInitializeEvent
PoCallDriver
KeWaitForSingleObject
PoSetPowerState
PoStartNextPowerIrp
IofCompleteRequest
KeInitializeDpc
KeSetEvent
ExFreePool
RtlCompareMemory
IoGetDeviceProperty
ExAllocatePoolWithTag
ZwEnumerateKey
ZwOpenKey
RtlUnwind
KfLowerIrql
KeStallExecutionProcessor
HalTranslateBusAddress
WRITE_PORT_ULONG
WRITE_PORT_USHORT
WRITE_PORT_UCHAR
READ_PORT_ULONG
READ_PORT_USHORT
READ_PORT_UCHAR
KeRaiseIrqlToDpcLevel

Exported Functions

Expand

Sections

Expand

.text
DIOBM
FBIDIO
.rdata
.data
INIT
.rsrc
.reloc

Signature

Expand

{
  "Certificates": [
    {
      "IsCertificateAuthority": true,
      "SerialNumber": "191a32cb759c97b8cfac118dd5127f49",
      "Signature": "3f5b19f3fa13d575382a5aee9f5aa04ca91dc5cc94eede15fef5106ea41ba56483541858c40b28a185c34e74e5ff897cfed5ed3cba719f5602268f162a88feb0a32722ce4be2388e00a63a865f9de53ea8de644941744121fd07c88417da1d653082cb264f39d60427a481b14b49c3238b7e02321827b7ab0bf31872b6a4ee67066f38a6588de0f17e5da460c6a8e5505fe0e8bae28f9958b6b5a0a876f1a2f11c8841727e52979b0a36998d50f701eb3ce7f0226ae5358c63368a1ab1d967665f971aefa8209df02fba6cced9948500f158f17dc97c22b5075d02c6e60bbfab9393ff27188e33367e5734f1c3af04c184f156b3e8878336f8d30a31dc6e2c6d",
      "SignatureAlgorithmOID": "1.2.840.113549.1.1.11",
      "Subject": "C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Extended Validation Code Signing CA , G2",
      "TBS": {
        "MD5": "788b61bd26da89253179e3de2cdb527f",
        "SHA1": "7d06f16e7bf21bce4f71c2cb7a3e74351451bf69",
        "SHA256": "b3c925b4048c3f7c444d248a2b101186b57cba39596eb5dce0e17a4ee4b32f19",
        "SHA384": "2955e28cb7ec0ea9730b499a0f189f9621eceb02591a9486b583f12bb845885a30d6a871826318a167cc5f06b274e58c"
      },
      "ValidFrom": "2014-03-04 00:00:00",
      "ValidTo": "2024-03-03 23:59:59",
      "Version": 3
    },
    {
      "IsCertificateAuthority": false,
      "SerialNumber": "6ec713048249f5421753b77c2796320f",
      "Signature": "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",
      "SignatureAlgorithmOID": "1.2.840.113549.1.1.11",
      "Subject": "??=JP, ??=Private Organization, serialNumber=2400,01,000873, C=JP, ST=Hiroshima, L=Hiroshima, O=Interface Corporation, OU=Development department, CN=Interface Corporation",
      "TBS": {
        "MD5": "899ac369826f1405bd7bf55c1d034016",
        "SHA1": "27edea8e430cad6d62f38aa060eaa042c4e8c9ed",
        "SHA256": "e9a0d18bbc667e7267f40aab5d2fc592ad72b4520f89474e1ca3d05f9af004d5",
        "SHA384": "6239f85331b6afe03a4e0631e5d01ff66fe58140fa5a1aad93aeac19e11417bc458c6aa831552dd5cfe4f0cd9ce49dbf"
      },
      "ValidFrom": "2019-05-11 00:00:00",
      "ValidTo": "2021-05-10 23:59:59",
      "Version": 3
    }
  ],
  "CertificatesInfo": "",
  "Signer": [
    {
      "Issuer": "C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Extended Validation Code Signing CA , G2",
      "SerialNumber": "6ec713048249f5421753b77c2796320f",
      "Version": 1
    }
  ],
  "SignerInfo": ""
}

Property	Value
Filename
Creation Timestamp	2007-03-12 00:06:43
MD5	ad612a7eb913b5f7d25703cd44953c35
SHA1	2ba0db7465cf4ffb272f803a9d77292b79c1e6df
SHA256	11832c345e9898c4f74d3bf8f126cf84b4b1a66ad36135e15d103dbf2ac17359
Authentihash MD5	3ea1e0ce9e19d6f8d5eeb4bca0b39a32
Authentihash SHA1	aef1fb88d1ba3e38694ca2fd1e845ec4b3668f4b
Authentihash SHA256	b44dfe8ea675910799fefab7626993926c04bad32091ece3dbdad5add31a6f15
RichPEHeaderHash MD5	c6f78c6f1f8c55d3cce2c58d50882c7f
RichPEHeaderHash SHA1	33b9d5f56fbe1f6d5e97c6e70b2ba40cb76a1df4
RichPEHeaderHash SHA256	10c83bfb35afcd97ed09e38b26c16ee402b8b4c29f266dea3d6ced3bb248e859
Company	Interface Corporation
Description	GPC-2X72C Kernel Device Driver(SYS) WindowsNT
Product	GPC-2X72C
OriginalFilename	CP2X72C

Download

Certificates

Expand

Certificate 3825d7faf861af9ef490e726b5d65ad5

Field	Value
ToBeSigned (TBS) MD5	d6c7684e9aaa508cf268335f83afe040
ToBeSigned (TBS) SHA1	18066d20ad92409c567cdfde745279ff71c75226
ToBeSigned (TBS) SHA256	a612fb22ce8be6dab75e47c98508f98496583e79c9c97b936a8caee9ea9f3fff
Subject	C=US, O=VeriSign, Inc., CN=VeriSign Time Stamping Services Signer , G2
ValidFrom	2007-06-15 00:00:00
ValidTo	2012-06-14 23:59:59
Signature	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
SignatureAlgorithmOID	1.2.840.113549.1.1.5
IsCertificateAuthority	False
SerialNumber	3825d7faf861af9ef490e726b5d65ad5
Version	3

Certificate 47bf1995df8d524643f7db6d480d31a4

Field	Value
ToBeSigned (TBS) MD5	518d2ea8a21e879c942d504824ac211c
ToBeSigned (TBS) SHA1	21ce87d827077e61abddf2beba69fde5432ea031
ToBeSigned (TBS) SHA256	1ec3b4f02e03930a470020e0e48d24b84678bb558f46182888d870541f5e25c7
Subject	C=US, O=VeriSign, Inc., CN=VeriSign Time Stamping Services CA
ValidFrom	2003-12-04 00:00:00
ValidTo	2013-12-03 23:59:59
Signature	4a6bf9ea58c2441c318979992b96bf82ac01d61c4ccdb08a586edf0829a35ec8ca9313e704520def47272f0038b0e4c9934e9ad4226215f73f37214f703180f18b3887b3e8e89700fecf55964e24d2a9274e7aaeb76141f32acee7c9d95eddbb2b853eb59db5d9e157ffbeb4c57ef5cf0c9ef097fe2bd33b521b1b3827f73f4a
SignatureAlgorithmOID	1.2.840.113549.1.1.5
IsCertificateAuthority	True
SerialNumber	47bf1995df8d524643f7db6d480d31a4
Version	3

Certificate 4191a15a3978dfcf496566381d4c75c2

Field	Value
ToBeSigned (TBS) MD5	41011f8d0e7c7a6408334ca387914c61
ToBeSigned (TBS) SHA1	c7fc1727f5b75a6421a1f95c73bbdb23580c48e5
ToBeSigned (TBS) SHA256	88dd3952638ee82738c03168e6fd863fe4eab1059ee5e2926ad8cb587c255dc0
Subject	C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)04, CN=VeriSign Class 3 Code Signing 2004 CA
ValidFrom	2004-07-16 00:00:00
ValidTo	2014-07-15 23:59:59
Signature	ae3a17b84a7b55fa6455ec40a4ed494190999c89bcaf2e1dca7823f91c190f7feb68bc32d98838dedc3fd389b43fb18296f1a45abaed2e26d3de7c016e000a00a4069211480940f91c1879672324e0bbd5e150ae1bf50edde02e81cd80a36c524f9175558aba22f2d2ea4175882f63557d1e545a9559cad93481c05f5ef67ab5
SignatureAlgorithmOID	1.2.840.113549.1.1.5
IsCertificateAuthority	True
SerialNumber	4191a15a3978dfcf496566381d4c75c2
Version	3

Certificate 69513db11ff8c46acacef4fa45441973

Field	Value
ToBeSigned (TBS) MD5	7872f0a6159c70980c4e682420c1d612
ToBeSigned (TBS) SHA1	1de98c55375993a6a3ed8281ce7d9fedc7dd39af
ToBeSigned (TBS) SHA256	578a3437935bd47ac80b60aba4d446b1213e9b29fa1d825cdd911d77eede7d0c
Subject	C=JP, ST=Hiroshima, L=Hiroshima, O=Interface Corporation, OU=Digital ID Class 3 , Microsoft Software Validation v2, OU=DSC, CN=Interface Corporation
ValidFrom	2007-09-20 00:00:00
ValidTo	2008-09-19 23:59:59
Signature	7e4c545b887dc3cd4278be9ef92e3636965f1cb58ad4a566441c11178bf60e4e9a2081ebf1d192d2b84cef1c7025a3a4b75738fba0a7470a1d2fc4502da1c4c22a47a86853e01d09aab19443cae2a1f482c2bb5f19e2cbc7e6a2fc97626f945a47a5a5b0b83c20971a5b7b6e2e01107e9adaa4bf06b51a2299826895aa78a47cc96c5c9d28e315c90dc63ade5f2f623db497cc846cc7d258474abdd7cd1f43998230d16d1a1e613191d450a55bd6442cd690dfe7aeeb732dde9317d228301f06a14b274bd1b02509deef5f222c86f5351864d96274daffc5bb4828a55a7f12500e27a6d8345440f0e4e288f3eaf15519c678f6b15766eb0f80f03dba44c1c254
SignatureAlgorithmOID	1.2.840.113549.1.1.5
IsCertificateAuthority	False
SerialNumber	69513db11ff8c46acacef4fa45441973
Version	3

Imports

Expand

ntoskrnl.exe
HAL.dll

Imported Functions

Expand

IoConnectInterrupt
KeInitializeDpc
KeInitializeSpinLock
IoCreateDevice
MmUnlockPagableImageSection
MmLockPagableDataSection
RtlIntegerToUnicodeString
IoStartPacket
IofCompleteRequest
InterlockedExchange
IoAcquireCancelSpinLock
ExfInterlockedInsertTailList
ExfInterlockedRemoveHeadList
IoReleaseCancelSpinLock
IoDeleteDevice
READ_REGISTER_UCHAR
READ_REGISTER_USHORT
READ_REGISTER_ULONG
WRITE_REGISTER_UCHAR
WRITE_REGISTER_USHORT
WRITE_REGISTER_ULONG
KeInsertQueueDpc
KeSynchronizeExecution
IoStartNextPacket
KefReleaseSpinLockFromDpcLevel
KefAcquireSpinLockAtDpcLevel
IoAllocateAdapterChannel
KeTickCount
KeBugCheckEx
IoDisconnectInterrupt
KeRemoveQueueDpc
ZwOpenKey
ZwClose
ZwEnumerateKey
RtlUnicodeStringToInteger
ZwQueryValueKey
IoReportResourceUsage
IoDeleteSymbolicLink
RtlInitUnicodeString
ExAllocatePoolWithTag
RtlAppendUnicodeToString
RtlAppendUnicodeStringToString
IoCreateSymbolicLink
ExFreePool
MmUnmapIoSpace
MmMapIoSpace
IoFreeMapRegisters
KfAcquireSpinLock
KfReleaseSpinLock
READ_PORT_USHORT
READ_PORT_ULONG
WRITE_PORT_ULONG
WRITE_PORT_USHORT
WRITE_PORT_UCHAR
HalGetBusData
READ_PORT_UCHAR
HalGetInterruptVector
HalGetAdapter
HalGetBusDataByOffset
HalSetBusDataByOffset
HalTranslateBusAddress
IoMapTransfer

Exported Functions

Expand

Sections

Expand

.text
DIOBM
FBIDIO
.rdata
.data
INIT
.rsrc
.reloc

Signature

Expand

{
  "Certificates": [
    {
      "IsCertificateAuthority": true,
      "SerialNumber": "191a32cb759c97b8cfac118dd5127f49",
      "Signature": "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",
      "SignatureAlgorithmOID": "1.2.840.113549.1.1.11",
      "Subject": "C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Extended Validation Code Signing CA , G2",
      "TBS": {
        "MD5": "788b61bd26da89253179e3de2cdb527f",
        "SHA1": "7d06f16e7bf21bce4f71c2cb7a3e74351451bf69",
        "SHA256": "b3c925b4048c3f7c444d248a2b101186b57cba39596eb5dce0e17a4ee4b32f19",
        "SHA384": "2955e28cb7ec0ea9730b499a0f189f9621eceb02591a9486b583f12bb845885a30d6a871826318a167cc5f06b274e58c"
      },
      "ValidFrom": "2014-03-04 00:00:00",
      "ValidTo": "2024-03-03 23:59:59",
      "Version": 3
    },
    {
      "IsCertificateAuthority": false,
      "SerialNumber": "6ec713048249f5421753b77c2796320f",
      "Signature": "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",
      "SignatureAlgorithmOID": "1.2.840.113549.1.1.11",
      "Subject": "??=JP, ??=Private Organization, serialNumber=2400,01,000873, C=JP, ST=Hiroshima, L=Hiroshima, O=Interface Corporation, OU=Development department, CN=Interface Corporation",
      "TBS": {
        "MD5": "899ac369826f1405bd7bf55c1d034016",
        "SHA1": "27edea8e430cad6d62f38aa060eaa042c4e8c9ed",
        "SHA256": "e9a0d18bbc667e7267f40aab5d2fc592ad72b4520f89474e1ca3d05f9af004d5",
        "SHA384": "6239f85331b6afe03a4e0631e5d01ff66fe58140fa5a1aad93aeac19e11417bc458c6aa831552dd5cfe4f0cd9ce49dbf"
      },
      "ValidFrom": "2019-05-11 00:00:00",
      "ValidTo": "2021-05-10 23:59:59",
      "Version": 3
    }
  ],
  "CertificatesInfo": "",
  "Signer": [
    {
      "Issuer": "C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Extended Validation Code Signing CA , G2",
      "SerialNumber": "6ec713048249f5421753b77c2796320f",
      "Version": 1
    }
  ],
  "SignerInfo": ""
}

Property	Value
Filename
Creation Timestamp	2020-03-25 22:53:57
MD5	2601cf769ad6ffee727997679693f774
SHA1	0536c9f15094ca8ddeef6dec75d93dc35366d8a9
SHA256	4b4ea21da21a1167c00b903c05a4e3af6c514ea3dfe0b5f371f6a06305e1d27f
Authentihash MD5	eab512f1f1e844469d104076f8243695
Authentihash SHA1	4288602c828247d96839e8f89fd8aa063a5ca371
Authentihash SHA256	b177164100a31fd01e7f0a24cb0a32015736d3c7c65744c21914a2d4459ef83d
RichPEHeaderHash MD5	ae0166a19cbd3b63ae5df13bbd38b738
RichPEHeaderHash SHA1	1fa6b355a71e454e465a35747788e8667b5da30a
RichPEHeaderHash SHA256	bdf2eb85c939b50a30f24be3dbd02beffdb695579d96aca9506182f5247b5249
Company	Interface Corporation
Description	GPC-2X72C I/O Module Device Driver
Product	GPC-2X72C DIO-BM(PCI/C-PCI)
OriginalFilename	CP2X72C.SYS

Download

Certificates

Expand

Certificate 191a32cb759c97b8cfac118dd5127f49

Field	Value
ToBeSigned (TBS) MD5	788b61bd26da89253179e3de2cdb527f
ToBeSigned (TBS) SHA1	7d06f16e7bf21bce4f71c2cb7a3e74351451bf69
ToBeSigned (TBS) SHA256	b3c925b4048c3f7c444d248a2b101186b57cba39596eb5dce0e17a4ee4b32f19
Subject	C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Extended Validation Code Signing CA , G2
ValidFrom	2014-03-04 00:00:00
ValidTo	2024-03-03 23:59:59
Signature	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
SignatureAlgorithmOID	1.2.840.113549.1.1.11
IsCertificateAuthority	True
SerialNumber	191a32cb759c97b8cfac118dd5127f49
Version	3

Certificate 6ec713048249f5421753b77c2796320f

Field	Value
ToBeSigned (TBS) MD5	899ac369826f1405bd7bf55c1d034016
ToBeSigned (TBS) SHA1	27edea8e430cad6d62f38aa060eaa042c4e8c9ed
ToBeSigned (TBS) SHA256	e9a0d18bbc667e7267f40aab5d2fc592ad72b4520f89474e1ca3d05f9af004d5
Subject	??=JP, ??=Private Organization, serialNumber=2400,01,000873, C=JP, ST=Hiroshima, L=Hiroshima, O=Interface Corporation, OU=Development department, CN=Interface Corporation
ValidFrom	2019-05-11 00:00:00
ValidTo	2021-05-10 23:59:59
Signature	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
SignatureAlgorithmOID	1.2.840.113549.1.1.11
IsCertificateAuthority	False
SerialNumber	6ec713048249f5421753b77c2796320f
Version	3

Imports

Expand

ntoskrnl.exe
HAL.dll

Imported Functions

Expand

ZwClose
RtlInitUnicodeString
RtlAppendUnicodeStringToString
RtlIntegerToUnicodeString
IofCompleteRequest
IoDeleteDevice
KeSetEvent
IoConnectInterrupt
RtlAppendUnicodeToString
IoReleaseRemoveLockAndWaitEx
KeInitializeEvent
KeWaitForSingleObject
RtlGetVersion
IoFreeIrp
ZwSetValueKey
IoAttachDeviceToDeviceStack
KeInitializeDpc
PoCallDriver
IoReleaseRemoveLockEx
IoAllocateIrp
IoCreateSymbolicLink
MmUnlockPagableImageSection
IoDetachDevice
IoInitializeRemoveLockEx
IoOpenDeviceRegistryKey
MmUnmapIoSpace
IoGetDmaAdapter
IoCreateDevice
PoStartNextPowerIrp
PoRequestPowerIrp
IoDisconnectInterrupt
IoAllocateErrorLogEntry
KeClearEvent
MmLockPagableDataSection
PoSetPowerState
IoWriteErrorLogEntry
IoDeleteSymbolicLink
ZwQueryValueKey
IofCallDriver
ExFreePoolWithTag
ExAllocatePool
KeRemoveQueueDpc
MmUnmapLockedPages
MmMapLockedPages
IoStartPacket
IoIs32bitProcess
MmBuildMdlForNonPagedPool
IoFreeMdl
IoReleaseCancelSpinLock
IoAcquireCancelSpinLock
IoAllocateMdl
KeSynchronizeExecution
KeInsertQueueDpc
KeReleaseSpinLockFromDpcLevel
IoStartNextPacket
KeAcquireSpinLockAtDpcLevel
KeBugCheckEx
MmMapIoSpace
IoAcquireRemoveLockEx
Mm64BitPhysicalAddress
ExAllocatePoolWithTag
ExFreePool
RtlCompareMemory
IoGetDeviceProperty
ZwEnumerateKey
ZwOpenKey
__C_specific_handler
HalTranslateBusAddress
KeStallExecutionProcessor

Exported Functions

Expand

Sections

Expand

.text
DIOBM
FBIDIO
.rdata
.data
.pdata
INIT
.rsrc

Signature

Expand

{
  "Certificates": [
    {
      "IsCertificateAuthority": true,
      "SerialNumber": "191a32cb759c97b8cfac118dd5127f49",
      "Signature": "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",
      "SignatureAlgorithmOID": "1.2.840.113549.1.1.11",
      "Subject": "C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Extended Validation Code Signing CA , G2",
      "TBS": {
        "MD5": "788b61bd26da89253179e3de2cdb527f",
        "SHA1": "7d06f16e7bf21bce4f71c2cb7a3e74351451bf69",
        "SHA256": "b3c925b4048c3f7c444d248a2b101186b57cba39596eb5dce0e17a4ee4b32f19",
        "SHA384": "2955e28cb7ec0ea9730b499a0f189f9621eceb02591a9486b583f12bb845885a30d6a871826318a167cc5f06b274e58c"
      },
      "ValidFrom": "2014-03-04 00:00:00",
      "ValidTo": "2024-03-03 23:59:59",
      "Version": 3
    },
    {
      "IsCertificateAuthority": false,
      "SerialNumber": "6ec713048249f5421753b77c2796320f",
      "Signature": "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",
      "SignatureAlgorithmOID": "1.2.840.113549.1.1.11",
      "Subject": "??=JP, ??=Private Organization, serialNumber=2400,01,000873, C=JP, ST=Hiroshima, L=Hiroshima, O=Interface Corporation, OU=Development department, CN=Interface Corporation",
      "TBS": {
        "MD5": "899ac369826f1405bd7bf55c1d034016",
        "SHA1": "27edea8e430cad6d62f38aa060eaa042c4e8c9ed",
        "SHA256": "e9a0d18bbc667e7267f40aab5d2fc592ad72b4520f89474e1ca3d05f9af004d5",
        "SHA384": "6239f85331b6afe03a4e0631e5d01ff66fe58140fa5a1aad93aeac19e11417bc458c6aa831552dd5cfe4f0cd9ce49dbf"
      },
      "ValidFrom": "2019-05-11 00:00:00",
      "ValidTo": "2021-05-10 23:59:59",
      "Version": 3
    }
  ],
  "CertificatesInfo": "",
  "Signer": [
    {
      "Issuer": "C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Extended Validation Code Signing CA , G2",
      "SerialNumber": "6ec713048249f5421753b77c2796320f",
      "Version": 1
    }
  ],
  "SignerInfo": ""
}

Property	Value
Filename
Creation Timestamp	2014-04-27 22:36:43
MD5	de2aac9468158c73880e31509924d7e0
SHA1	d9b05c5ffc5eddf65186ba802bb1ece0249cab05
SHA256	63865f04c1150655817ed4c9f56ad9f637d41ebd2965b6127fc7c02757a7800e
Authentihash MD5	c21ee0f8ba66b8b72e43158fd740f4dd
Authentihash SHA1	7ec84ab4170b0b911d5a21d717d06aeb7a8c8ace
Authentihash SHA256	3c03433ea3376f6f099ad77a4ce59187817d1bc0c3c0f55fd931320d909dd920
RichPEHeaderHash MD5	392105478261191dc6112bb08d97b499
RichPEHeaderHash SHA1	ea819d9ecaeed60cb8b4543baa87ab9f1c9d3c10
RichPEHeaderHash SHA256	c5295a6a29894b43be50051e75c63cf3624590f4307694e80f6d3fc3770dd760
Company	Interface Corporation
Description	GPC-2X72C I/O Module Device Driver
Product	GPC-2X72C DIO-BM(PCI/C-PCI)
OriginalFilename	CP2X72C.SYS

Download

Certificates

Expand

Certificate 7e93ebfb7cc64e59ea4b9a77d406fc3b

Field	Value
ToBeSigned (TBS) MD5	d0785ad36e427c92b19f6826ab1e8020
ToBeSigned (TBS) SHA1	365b7a9c21bd9373e49052c3e7b3e4646ddd4d43
ToBeSigned (TBS) SHA256	c2abb7484da91a658548de089d52436175fdb760a1387d225611dc0613a1e2ff
Subject	C=US, O=Symantec Corporation, CN=Symantec Time Stamping Services CA , G2
ValidFrom	2012-12-21 00:00:00
ValidTo	2020-12-30 23:59:59
Signature	03099b8f79ef7f5930aaef68b5fae3091dbb4f82065d375fa6529f168dea1c9209446ef56deb587c30e8f9698d23730b126f47a9ae3911f82ab19bb01ac38eeb599600adce0c4db2d031a6085c2a7afce27a1d574ca86518e979406225966ec7c7376a8321088e41eaddd9573f1d7749872a16065ea6386a2212a35119837eb6
SignatureAlgorithmOID	1.2.840.113549.1.1.5
IsCertificateAuthority	True
SerialNumber	7e93ebfb7cc64e59ea4b9a77d406fc3b
Version	3

Certificate 0ecff438c8febf356e04d86a981b1a50

Field	Value
ToBeSigned (TBS) MD5	e9d38360b914c8863f6cba3ee58764d3
ToBeSigned (TBS) SHA1	4cba8eae47b6bf76f20b3504b98b8f062694a89b
ToBeSigned (TBS) SHA256	88901d86a4cc1f1bb193d08e1fb63d27452e63f83e228c657ab1a92e4ade3976
Subject	C=US, O=Symantec Corporation, CN=Symantec Time Stamping Services Signer , G4
ValidFrom	2012-10-18 00:00:00
ValidTo	2020-12-29 23:59:59
Signature	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
SignatureAlgorithmOID	1.2.840.113549.1.1.5
IsCertificateAuthority	False
SerialNumber	0ecff438c8febf356e04d86a981b1a50
Version	3

Certificate 250ce8e030612e9f2b89f7054d7cf8fd

Field	Value
ToBeSigned (TBS) MD5	918d9eb6a6cd36c531eceb926170a7e1
ToBeSigned (TBS) SHA1	0ae95700d65e6f59715aa47048993ca7858e676a
ToBeSigned (TBS) SHA256	47c46e6eaa3780eace3d0d891346cd373359d246b21a957219dbab4c8f37c166
Subject	C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=(c) 2006 VeriSign, Inc. , For authorized use only, CN=VeriSign Class 3 Public Primary Certification Authority , G5
ValidFrom	2006-11-08 00:00:00
ValidTo	2021-11-07 23:59:59
Signature	1302ddf8e88600f25af8f8200c59886207cecef74ef9bb59a198e5e138dd4ebc6618d3adeb18f20dc96d3e4a9420c33cbabd6554c6af44b310ad2c6b3eabd707b6b88163c5f95e2ee52a67cecd330c2ad7895603231fb3bee83a0859b4ec4535f78a5bff66cf50afc66d578d1978b7b9a2d157ea1f9a4bafbac98e127ec6bdff
SignatureAlgorithmOID	1.2.840.113549.1.1.5
IsCertificateAuthority	True
SerialNumber	250ce8e030612e9f2b89f7054d7cf8fd
Version	3

Certificate 05f803452203a09cc083f213aad07fb6

Field	Value
ToBeSigned (TBS) MD5	ef79dcc14a9e19d41d383b3979d58a05
ToBeSigned (TBS) SHA1	9388992f7a914b818de4832a0e9c071bfad99ac8
ToBeSigned (TBS) SHA256	6bf61e40c54da3dc52ce6fec7796a39b119089037b06085079860b00060cae6a
Subject	C=JP, ST=Hiroshima, L=Hiroshima, O=Interface Corporation, OU=Digital ID Class 3 , Microsoft Software Validation v2, OU=DSC, CN=Interface Corporation
ValidFrom	2012-08-22 00:00:00
ValidTo	2014-09-07 23:59:59
Signature	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
SignatureAlgorithmOID	1.2.840.113549.1.1.5
IsCertificateAuthority	False
SerialNumber	05f803452203a09cc083f213aad07fb6
Version	3

Certificate 5200e5aa2556fc1a86ed96c9d44b33c7

Field	Value
ToBeSigned (TBS) MD5	b30c31a572b0409383ed3fbe17e56e81
ToBeSigned (TBS) SHA1	4843a82ed3b1f2bfbee9671960e1940c942f688d
ToBeSigned (TBS) SHA256	03cda47a6e654ed85d932714fc09ce4874600eda29ec6628cfbaeb155cab78c9
Subject	C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)10, CN=VeriSign Class 3 Code Signing 2010 CA
ValidFrom	2010-02-08 00:00:00
ValidTo	2020-02-07 23:59:59
Signature	5622e634a4c461cb48b901ad56a8640fd98c91c4bbcc0ce5ad7aa0227fdf47384a2d6cd17f711a7cec70a9b1f04fe40f0c53fa155efe749849248581261c911447b04c638cbba134d4c645e80d85267303d0a98c646ddc7192e645056015595139fc58146bfed4a4ed796b080c4172e737220609be23e93f449a1ee9619dccb1905cfc3dd28dac423d6536d4b43d40288f9b10cf2326cc4b20cb901f5d8c4c34ca3cd8e537d66fa520bd34eb26d9ae0de7c59af7a1b42191336f86e858bb257c740e58fe751b633fce317c9b8f1b969ec55376845b9cad91faaced93ba5dc82153c2825363af120d5087111b3d5452968a2c9c3d921a089a052ec793a54891d3
SignatureAlgorithmOID	1.2.840.113549.1.1.5
IsCertificateAuthority	True
SerialNumber	5200e5aa2556fc1a86ed96c9d44b33c7
Version	3

Imports

Expand

ntoskrnl.exe
HAL.dll

Imported Functions

Expand

ExAllocatePool
RtlInitUnicodeString
memset
IoCreateSymbolicLink
RtlAppendUnicodeToString
IoDeleteSymbolicLink
ZwClose
ZwQueryValueKey
IoOpenDeviceRegistryKey
memcpy
KeClearEvent
IoFreeIrp
IoAllocateIrp
ZwSetValueKey
IoGetDmaAdapter
READ_REGISTER_UCHAR
READ_REGISTER_USHORT
READ_REGISTER_ULONG
WRITE_REGISTER_UCHAR
WRITE_REGISTER_USHORT
WRITE_REGISTER_ULONG
IoConnectInterrupt
MmMapIoSpace
PoRequestPowerIrp
RtlIntegerToUnicodeString
IoCreateDevice
MmUnmapIoSpace
KeRemoveQueueDpc
IoDisconnectInterrupt
IoInitializeRemoveLockEx
IoDeleteDevice
IoAttachDeviceToDeviceStack
IoDetachDevice
IoReleaseRemoveLockAndWaitEx
IoReleaseRemoveLockEx
IoAcquireRemoveLockEx
MmUnlockPagableImageSection
MmLockPagableDataSection
IoStartPacket
IoReleaseCancelSpinLock
IoFreeMdl
MmUnmapLockedPages
IoAcquireCancelSpinLock
KeInsertQueueDpc
KeSynchronizeExecution
IoStartNextPacket
KefReleaseSpinLockFromDpcLevel
KefAcquireSpinLockAtDpcLevel
KeTickCount
KeBugCheckEx
RtlAppendUnicodeStringToString
ExFreePoolWithTag
IofCallDriver
KeInitializeEvent
PoCallDriver
KeWaitForSingleObject
PoSetPowerState
PoStartNextPowerIrp
IofCompleteRequest
KeInitializeDpc
KeSetEvent
ExFreePool
RtlCompareMemory
IoGetDeviceProperty
ExAllocatePoolWithTag
ZwEnumerateKey
ZwOpenKey
RtlUnwind
KfLowerIrql
KeStallExecutionProcessor
HalTranslateBusAddress
WRITE_PORT_ULONG
WRITE_PORT_USHORT
WRITE_PORT_UCHAR
READ_PORT_ULONG
READ_PORT_USHORT
READ_PORT_UCHAR
KeRaiseIrqlToDpcLevel

Exported Functions

Expand

Sections

Expand

.text
DIOBM
FBIDIO
.rdata
.data
INIT
.rsrc
.reloc

Signature

Expand

{
  "Certificates": [
    {
      "IsCertificateAuthority": true,
      "SerialNumber": "191a32cb759c97b8cfac118dd5127f49",
      "Signature": "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",
      "SignatureAlgorithmOID": "1.2.840.113549.1.1.11",
      "Subject": "C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Extended Validation Code Signing CA , G2",
      "TBS": {
        "MD5": "788b61bd26da89253179e3de2cdb527f",
        "SHA1": "7d06f16e7bf21bce4f71c2cb7a3e74351451bf69",
        "SHA256": "b3c925b4048c3f7c444d248a2b101186b57cba39596eb5dce0e17a4ee4b32f19",
        "SHA384": "2955e28cb7ec0ea9730b499a0f189f9621eceb02591a9486b583f12bb845885a30d6a871826318a167cc5f06b274e58c"
      },
      "ValidFrom": "2014-03-04 00:00:00",
      "ValidTo": "2024-03-03 23:59:59",
      "Version": 3
    },
    {
      "IsCertificateAuthority": false,
      "SerialNumber": "6ec713048249f5421753b77c2796320f",
      "Signature": "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",
      "SignatureAlgorithmOID": "1.2.840.113549.1.1.11",
      "Subject": "??=JP, ??=Private Organization, serialNumber=2400,01,000873, C=JP, ST=Hiroshima, L=Hiroshima, O=Interface Corporation, OU=Development department, CN=Interface Corporation",
      "TBS": {
        "MD5": "899ac369826f1405bd7bf55c1d034016",
        "SHA1": "27edea8e430cad6d62f38aa060eaa042c4e8c9ed",
        "SHA256": "e9a0d18bbc667e7267f40aab5d2fc592ad72b4520f89474e1ca3d05f9af004d5",
        "SHA384": "6239f85331b6afe03a4e0631e5d01ff66fe58140fa5a1aad93aeac19e11417bc458c6aa831552dd5cfe4f0cd9ce49dbf"
      },
      "ValidFrom": "2019-05-11 00:00:00",
      "ValidTo": "2021-05-10 23:59:59",
      "Version": 3
    }
  ],
  "CertificatesInfo": "",
  "Signer": [
    {
      "Issuer": "C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Extended Validation Code Signing CA , G2",
      "SerialNumber": "6ec713048249f5421753b77c2796320f",
      "Version": 1
    }
  ],
  "SignerInfo": ""
}

Property	Value
Filename
Creation Timestamp	2014-04-27 22:37:11
MD5	e98f4cc2cbf9ec23fd84da30c0625884
SHA1	67e87ca093da64a23cf0fc0be2b35e03d1bf1543
SHA256	9c8ed1506b3e35f5eea6ac539e286d46ef76ddbfdfc5406390fd2157c762ce91
Authentihash MD5	3189fc90f7a5a27e512fb733de818110
Authentihash SHA1	2170ba5d21bf949702480a0419d08bf00321afe5
Authentihash SHA256	054f04dc0ba1b20701c6f44169ea0fdd27b01a8450a44cc273b0eb0c91cbdb68
RichPEHeaderHash MD5	ae0166a19cbd3b63ae5df13bbd38b738
RichPEHeaderHash SHA1	1fa6b355a71e454e465a35747788e8667b5da30a
RichPEHeaderHash SHA256	bdf2eb85c939b50a30f24be3dbd02beffdb695579d96aca9506182f5247b5249
Company	Interface Corporation
Description	GPC-2X72C I/O Module Device Driver
Product	GPC-2X72C DIO-BM(PCI/C-PCI)
OriginalFilename	CP2X72C.SYS

Download

Certificates

Expand

Certificate 7e93ebfb7cc64e59ea4b9a77d406fc3b

Field	Value
ToBeSigned (TBS) MD5	d0785ad36e427c92b19f6826ab1e8020
ToBeSigned (TBS) SHA1	365b7a9c21bd9373e49052c3e7b3e4646ddd4d43
ToBeSigned (TBS) SHA256	c2abb7484da91a658548de089d52436175fdb760a1387d225611dc0613a1e2ff
Subject	C=US, O=Symantec Corporation, CN=Symantec Time Stamping Services CA , G2
ValidFrom	2012-12-21 00:00:00
ValidTo	2020-12-30 23:59:59
Signature	03099b8f79ef7f5930aaef68b5fae3091dbb4f82065d375fa6529f168dea1c9209446ef56deb587c30e8f9698d23730b126f47a9ae3911f82ab19bb01ac38eeb599600adce0c4db2d031a6085c2a7afce27a1d574ca86518e979406225966ec7c7376a8321088e41eaddd9573f1d7749872a16065ea6386a2212a35119837eb6
SignatureAlgorithmOID	1.2.840.113549.1.1.5
IsCertificateAuthority	True
SerialNumber	7e93ebfb7cc64e59ea4b9a77d406fc3b
Version	3

Certificate 0ecff438c8febf356e04d86a981b1a50

Field	Value
ToBeSigned (TBS) MD5	e9d38360b914c8863f6cba3ee58764d3
ToBeSigned (TBS) SHA1	4cba8eae47b6bf76f20b3504b98b8f062694a89b
ToBeSigned (TBS) SHA256	88901d86a4cc1f1bb193d08e1fb63d27452e63f83e228c657ab1a92e4ade3976
Subject	C=US, O=Symantec Corporation, CN=Symantec Time Stamping Services Signer , G4
ValidFrom	2012-10-18 00:00:00
ValidTo	2020-12-29 23:59:59
Signature	783bb4912a004cf08f62303778a38427076f18b2de25dca0d49403aa864e259f9a40031cddcee379cb216806dab632b46dbff42c266333e449646d0de6c3670ef705a4356c7c8916c6e9b2dfb2e9dd20c6710fcd9574dcb65cdebd371f4378e678b5cd280420a3aaf14bc48829910e80d111fcdd5c766e4f5e0e4546416e0db0ea389ab13ada097110fc1c79b4807bac69f4fd9cb60c162bf17f5b093d9b5be216ca13816d002e380da8298f2ce1b2f45aa901af159c2c2f491bdb22bbc3fe789451c386b182885df03db451a179332b2e7bb9dc20091371eb6a195bcfe8a530572c89493fb9cf7fc9bf3e226863539abd6974acc51d3c7f92e0c3bc1cd80475
SignatureAlgorithmOID	1.2.840.113549.1.1.5
IsCertificateAuthority	False
SerialNumber	0ecff438c8febf356e04d86a981b1a50
Version	3

Certificate 250ce8e030612e9f2b89f7054d7cf8fd

Field	Value
ToBeSigned (TBS) MD5	918d9eb6a6cd36c531eceb926170a7e1
ToBeSigned (TBS) SHA1	0ae95700d65e6f59715aa47048993ca7858e676a
ToBeSigned (TBS) SHA256	47c46e6eaa3780eace3d0d891346cd373359d246b21a957219dbab4c8f37c166
Subject	C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=(c) 2006 VeriSign, Inc. , For authorized use only, CN=VeriSign Class 3 Public Primary Certification Authority , G5
ValidFrom	2006-11-08 00:00:00
ValidTo	2021-11-07 23:59:59
Signature	1302ddf8e88600f25af8f8200c59886207cecef74ef9bb59a198e5e138dd4ebc6618d3adeb18f20dc96d3e4a9420c33cbabd6554c6af44b310ad2c6b3eabd707b6b88163c5f95e2ee52a67cecd330c2ad7895603231fb3bee83a0859b4ec4535f78a5bff66cf50afc66d578d1978b7b9a2d157ea1f9a4bafbac98e127ec6bdff
SignatureAlgorithmOID	1.2.840.113549.1.1.5
IsCertificateAuthority	True
SerialNumber	250ce8e030612e9f2b89f7054d7cf8fd
Version	3

Certificate 05f803452203a09cc083f213aad07fb6

Field	Value
ToBeSigned (TBS) MD5	ef79dcc14a9e19d41d383b3979d58a05
ToBeSigned (TBS) SHA1	9388992f7a914b818de4832a0e9c071bfad99ac8
ToBeSigned (TBS) SHA256	6bf61e40c54da3dc52ce6fec7796a39b119089037b06085079860b00060cae6a
Subject	C=JP, ST=Hiroshima, L=Hiroshima, O=Interface Corporation, OU=Digital ID Class 3 , Microsoft Software Validation v2, OU=DSC, CN=Interface Corporation
ValidFrom	2012-08-22 00:00:00
ValidTo	2014-09-07 23:59:59
Signature	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
SignatureAlgorithmOID	1.2.840.113549.1.1.5
IsCertificateAuthority	False
SerialNumber	05f803452203a09cc083f213aad07fb6
Version	3

Certificate 5200e5aa2556fc1a86ed96c9d44b33c7

Field	Value
ToBeSigned (TBS) MD5	b30c31a572b0409383ed3fbe17e56e81
ToBeSigned (TBS) SHA1	4843a82ed3b1f2bfbee9671960e1940c942f688d
ToBeSigned (TBS) SHA256	03cda47a6e654ed85d932714fc09ce4874600eda29ec6628cfbaeb155cab78c9
Subject	C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)10, CN=VeriSign Class 3 Code Signing 2010 CA
ValidFrom	2010-02-08 00:00:00
ValidTo	2020-02-07 23:59:59
Signature	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
SignatureAlgorithmOID	1.2.840.113549.1.1.5
IsCertificateAuthority	True
SerialNumber	5200e5aa2556fc1a86ed96c9d44b33c7
Version	3

Imports

Expand

ntoskrnl.exe
HAL.dll

Imported Functions

Expand

ZwClose
RtlInitUnicodeString
RtlAppendUnicodeStringToString
RtlIntegerToUnicodeString
IofCompleteRequest
IoDeleteDevice
KeSetEvent
IoConnectInterrupt
RtlAppendUnicodeToString
IoReleaseRemoveLockAndWaitEx
KeInitializeEvent
KeWaitForSingleObject
RtlGetVersion
IoFreeIrp
ZwSetValueKey
IoAttachDeviceToDeviceStack
KeInitializeDpc
PoCallDriver
IoReleaseRemoveLockEx
IoAllocateIrp
IoCreateSymbolicLink
MmUnlockPagableImageSection
IoDetachDevice
IoInitializeRemoveLockEx
IoOpenDeviceRegistryKey
MmUnmapIoSpace
IoGetDmaAdapter
IoCreateDevice
PoStartNextPowerIrp
PoRequestPowerIrp
IoDisconnectInterrupt
IoAllocateErrorLogEntry
KeClearEvent
MmLockPagableDataSection
PoSetPowerState
IoWriteErrorLogEntry
IoDeleteSymbolicLink
ZwQueryValueKey
IofCallDriver
ExFreePoolWithTag
ExAllocatePool
KeRemoveQueueDpc
MmUnmapLockedPages
MmMapLockedPages
IoStartPacket
IoIs32bitProcess
MmBuildMdlForNonPagedPool
IoFreeMdl
IoReleaseCancelSpinLock
IoAcquireCancelSpinLock
IoAllocateMdl
KeSynchronizeExecution
KeInsertQueueDpc
KeReleaseSpinLockFromDpcLevel
IoStartNextPacket
KeAcquireSpinLockAtDpcLevel
KeBugCheckEx
MmMapIoSpace
IoAcquireRemoveLockEx
Mm64BitPhysicalAddress
ExAllocatePoolWithTag
ExFreePool
RtlCompareMemory
IoGetDeviceProperty
ZwEnumerateKey
ZwOpenKey
__C_specific_handler
HalTranslateBusAddress
KeStallExecutionProcessor

Exported Functions

Expand

Sections

Expand

.text
DIOBM
FBIDIO
.rdata
.data
.pdata
INIT
.rsrc

Signature

Expand

{
  "Certificates": [
    {
      "IsCertificateAuthority": true,
      "SerialNumber": "191a32cb759c97b8cfac118dd5127f49",
      "Signature": "3f5b19f3fa13d575382a5aee9f5aa04ca91dc5cc94eede15fef5106ea41ba56483541858c40b28a185c34e74e5ff897cfed5ed3cba719f5602268f162a88feb0a32722ce4be2388e00a63a865f9de53ea8de644941744121fd07c88417da1d653082cb264f39d60427a481b14b49c3238b7e02321827b7ab0bf31872b6a4ee67066f38a6588de0f17e5da460c6a8e5505fe0e8bae28f9958b6b5a0a876f1a2f11c8841727e52979b0a36998d50f701eb3ce7f0226ae5358c63368a1ab1d967665f971aefa8209df02fba6cced9948500f158f17dc97c22b5075d02c6e60bbfab9393ff27188e33367e5734f1c3af04c184f156b3e8878336f8d30a31dc6e2c6d",
      "SignatureAlgorithmOID": "1.2.840.113549.1.1.11",
      "Subject": "C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Extended Validation Code Signing CA , G2",
      "TBS": {
        "MD5": "788b61bd26da89253179e3de2cdb527f",
        "SHA1": "7d06f16e7bf21bce4f71c2cb7a3e74351451bf69",
        "SHA256": "b3c925b4048c3f7c444d248a2b101186b57cba39596eb5dce0e17a4ee4b32f19",
        "SHA384": "2955e28cb7ec0ea9730b499a0f189f9621eceb02591a9486b583f12bb845885a30d6a871826318a167cc5f06b274e58c"
      },
      "ValidFrom": "2014-03-04 00:00:00",
      "ValidTo": "2024-03-03 23:59:59",
      "Version": 3
    },
    {
      "IsCertificateAuthority": false,
      "SerialNumber": "6ec713048249f5421753b77c2796320f",
      "Signature": "b3e7b16c76cee3ae479c25d30debce73d3622ccc321b1991abf6dc07d602f84a5e58e427c92ea1eb0eb426aeec0ae9ead5b15e874b67a1e65fc43fb4ee94fdd529779a19f7f6082a595b878e3da81a22ea229855bfd0fa8da928645e7c757c10c68890beb97bb6dead90de2d9491b514d3de0045c76c19f96d5734fc8d78ab9d02eadaeed30e5852aa5e2e2bf482e17ad5ce630ec044b864ad17146b4f5a39123ec7ec59f57e6fd73bd52fe8d7da767254f3f72916f0e5c8758f81b6b402c324f1b7ccbd49afe0dc0f81d5d23ea844d9b8932fef0af0f136732ed66dad9b1bffca564a61f572365ad88e6a8a40bfd82788ccf2f587edae46df4a9d62fe5d741b",
      "SignatureAlgorithmOID": "1.2.840.113549.1.1.11",
      "Subject": "??=JP, ??=Private Organization, serialNumber=2400,01,000873, C=JP, ST=Hiroshima, L=Hiroshima, O=Interface Corporation, OU=Development department, CN=Interface Corporation",
      "TBS": {
        "MD5": "899ac369826f1405bd7bf55c1d034016",
        "SHA1": "27edea8e430cad6d62f38aa060eaa042c4e8c9ed",
        "SHA256": "e9a0d18bbc667e7267f40aab5d2fc592ad72b4520f89474e1ca3d05f9af004d5",
        "SHA384": "6239f85331b6afe03a4e0631e5d01ff66fe58140fa5a1aad93aeac19e11417bc458c6aa831552dd5cfe4f0cd9ce49dbf"
      },
      "ValidFrom": "2019-05-11 00:00:00",
      "ValidTo": "2021-05-10 23:59:59",
      "Version": 3
    }
  ],
  "CertificatesInfo": "",
  "Signer": [
    {
      "Issuer": "C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Extended Validation Code Signing CA , G2",
      "SerialNumber": "6ec713048249f5421753b77c2796320f",
      "Version": 1
    }
  ],
  "SignerInfo": ""
}

source

last_updated: 2024-09-26