AmazonSSMAgentSetup.exe
- File Path:
C:\ProgramData\Package Cache\{00df870a-cc28-4be9-941b-6a4679dd0ead}\AmazonSSMAgentSetup.exe
- Description: Amazon SSM Agent
Hashes
| Type |
Hash |
| MD5 |
3CEF27949E14E0D0D06FD4313A9F76C6 |
| SHA1 |
6CF1CF72D76B8241F95FC8F87198A3216A4ED87F |
| SHA256 |
349A9E009CDF71E6E7C9781F71C1A1DE1473900DEF25DE9116FAFE3ED59F9AC3 |
| SHA384 |
DD83D4275A3A6EA8108467203781788AC491C10E197CC2711A8A03DD2A26B8AD99C0E444690F0A65D426F64E274C6882 |
| SHA512 |
AD4878250080E5D5181FB552473F10AB483B0516D0074AFB0229B7F93C669630F9E6E4A419021CC62683FC84C3EC5D355FA6E8A64D70B57EAF193258ED54E0BE |
| SSDEEP |
12288:r79g/k9Ygb25zyaaEqrHqm/ARv7yKEkLGwPTO87:9gwYgb25FJsqIARzekLrPSE |
| IMP |
945B38293D63DE197023E59F28A06BB8 |
| PESHA1 |
20D0FDE3EF97607D603DFE78B2AC73C7A379E6AC |
| PE256 |
F21A232D8FFD158D6F01D539577D3632F3756DF3897B0DBC068096456F6A4904 |
Runtime Data
Child Processes:
AmazonSSMAgentSetup.exe
Open Handles:
| Path |
Type |
| (R-D) C:\ProgramData\Package Cache{00df870a-cc28-4be9-941b-6a4679dd0ead}\AmazonSSMAgentSetup.exe |
File |
| (R-D) C:\Windows\System32\en-US\KernelBase.dll.mui |
File |
| (RW-) C:\Users\user |
File |
| (RW-) C:\Windows |
File |
| \BaseNamedObjects__ComCatalogCache__ |
Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000004.db |
Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000004.db |
Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*cversions.2.ro |
Section |
| \BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 |
Section |
| \BaseNamedObjects\NLS_CodePage_437_3_2_0_0 |
Section |
| \Sessions\2\BaseNamedObjects\windows_shell_global_counters |
Section |
Loaded Modules:
| Path |
| C:\ProgramData\Package Cache{00df870a-cc28-4be9-941b-6a4679dd0ead}\AmazonSSMAgentSetup.exe |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\wow64.dll |
| C:\Windows\System32\wow64cpu.dll |
| C:\Windows\System32\wow64win.dll |
Signature
- Status: Signature verified.
- Serial:
2F83C35B5136353D68CE9EB669FD1B0B
- Thumbprint:
4BAD227329ADEF18F215B6475FB7948E1629B505
- Issuer: CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US
- Subject: CN=Amazon.com Services LLC, OU=Software Services, O=Amazon.com Services LLC, L=Seattle, S=Washington, C=US
- Original Filename: AmazonSSMAgentSetup.exe
- Product Name: Amazon SSM Agent
- Company Name: Amazon Web Services
- File Version: 2.3.1319.0
- Product Version: 2.3.1319.0
- Language: English (United States)
- Legal Copyright: Copyright (c) Amazon Web Services. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/68
- VirusTotal Link: https://www.virustotal.com/gui/file/349a9e009cdf71e6e7c9781f71c1a1de1473900def25de9116fafe3ed59f9ac3/detection/
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.