AppVDllSurrogate.exe

  • File Path: C:\Windows\system32\AppVDllSurrogate.exe
  • Description: Client DLL Surrogate Host

Hashes

Type Hash
MD5 AB91C19E6B17B43A226594A8D152BA54
SHA1 3637CE58D24D5CBDE364B9CFD80FD1D1B9083CD5
SHA256 262A115406764149D2F468975231D2CD7A46D14BF0C379EE193A129AC0B39C04
SHA384 8BBD7C4EAD24113D62676778A5220A132CF02B0D82EC4C7F10EEB38E15CBE81A9C90CDB1A26B47568434EB0BF634DAB5
SHA512 C73FF013D6186EE2FEF1A915D33031F5BC04F91A6890B9B217B426B150C5A2959D43C330FCF35B921326491F22FA82D889ED1B4FC24096D5F067E3A5869209CA
SSDEEP 1536:BLjCEjIHIulOYxMbzWafKYbkkbsFDfSIT0nJ2QC7pfKdtO7B/HfPpc/F:BLj12IvYxUWGNU6ITLjKdM7lfY
IMP 0587FCF2E1F1E03C45813A57DC9CF623
PESHA1 4895FEEC1090417F9D21D68060EDBC26384FC4AB
PE256 101C33BE89D825EE04ACE32D8C6E6839B6DAE52A1B2DAADD055D7EC4A5790168

Runtime Data

Loaded Modules:

Path
C:\Windows\system32\AppVDllSurrogate.exe
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\SYSTEM32\ntdll.dll

Signature

  • Status: Signature verified.
  • Serial: 33000002EC6579AD1E670890130000000002EC
  • Thumbprint: F7C2F2C96A328C13CDA8CDB57B715BDEA2CBD1D9
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: AppVDllSurrogate.exe
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.19041.1320 (WinBuild.160101.0800)
  • Product Version: 10.0.19041.1320
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: Unknown

File Similarity (ssdeep match)

File Score
C:\WINDOWS\system32\AppVDllSurrogate.exe 40
C:\Windows\system32\AppVDllSurrogate.exe 58
C:\WINDOWS\system32\AppVDllSurrogate.exe 43
C:\Windows\system32\AppVDllSurrogate.exe 32
C:\Windows\system32\AppVDllSurrogate.exe 57
C:\Windows\system32\AppVFileSystemMetadata.dll 38
C:\Windows\system32\AppVNice.exe 49
C:\Windows\system32\AppVNice.exe 49
C:\Windows\system32\AppVNice.exe 38
C:\Windows\system32\AppVNice.exe 33
C:\WINDOWS\system32\AppVNice.exe 30
C:\Windows\system32\AppVNice.exe 32
C:\WINDOWS\system32\AppVNice.exe 41
C:\Windows\system32\AppVShNotify.exe 36
C:\Windows\system32\AppVShNotify.exe 33
C:\Windows\system32\AppVShNotify.exe 30
C:\Windows\system32\AppVShNotify.exe 30
C:\Windows\system32\AppVStreamingUX.dll 29
C:\Windows\system32\AppVStreamMap.dll 32
C:\Windows\system32\mavinject.exe 38
C:\Windows\system32\mavinject.exe 49
C:\Windows\system32\mavinject.exe 33
C:\Windows\system32\mavinject.exe 47
C:\WINDOWS\system32\mavinject.exe 46
C:\Windows\system32\mavinject.exe 30
C:\WINDOWS\system32\mavinject.exe 30
C:\Windows\system32\mavinject.exe 30

MIT License. Copyright (c) 2020-2021 Strontic.