AppVDllSurrogate64.exe
- File Path:
C:\Program Files (x86)\Microsoft Office\root\Client\AppVDllSurrogate64.exe
- Description: AppVDllSurrogate64
Hashes
| Type |
Hash |
| MD5 |
1F3D3966B470725B8A45368E2CF3602A |
| SHA1 |
8516452BAC14592DA7E74C3B541F534EF9B75C78 |
| SHA256 |
F56A00EA456955E263D66988254CEA05D3CBF680A4692D9DEC27B728C59E8ABB |
| SHA384 |
FE3DFD546BF0DB95274588E5E8530AFCB2112C0C7F7A4482842A390A6B01A8F4905D69D4F203A782A22CD2ACA553DDB3 |
| SHA512 |
543F0E3CABBB07231BFF91918F0774779847FFB814D321CA944CF38983FF68125E04321AC502C04705AE6627950CBA90A2260BD6F98C7E98C14630280330E79B |
| SSDEEP |
3072:be5z7koI57jH+lWGNwINYdud3zATVkQhrrNxIO718Y4X5qg:be97hI8WGNTNYdMzATVkQNUO7q5h |
| IMP |
352C20A26119468E29BA1F92D2DCD568 |
| PESHA1 |
B4795FA4D76E2A2E28CE69915A3E1801C21DE337 |
| PE256 |
47FEF463D46CC14219D27C9322DE27592E9ADDBA6A02214EF27BDA37F452B4CD |
Runtime Data
Child Processes:
conhost.exe
Open Handles:
| Path |
Type |
| (RW-) C:\Users\user\Documents |
File |
| \BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 |
Section |
| \BaseNamedObjects\NLS_CodePage_437_3_2_0_0 |
Section |
Loaded Modules:
| Path |
| C:\Program Files (x86)\Microsoft Office\root\Client\AppVDllSurrogate64.exe |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
Signature
- Status: Signature verified.
- Serial:
330000014096A9EE7056FECC07000100000140
- Thumbprint:
98ED99A67886D020C564923B7DF25E9AC019DF26
- Issuer: CN=Microsoft Code Signing PCA, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Corporation, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: AppVDllSurrogate64.exe
- Product Name: Microsoft Application Virtualization (App-V)
- Company Name: Microsoft Corporation
- File Version: 5.1.125.0
- Product Version: 5.1.125.0
- Language: English (United States)
- Legal Copyright: 2015 Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/71
- VirusTotal Link: https://www.virustotal.com/gui/file/f56a00ea456955e263d66988254cea05d3cbf680a4692d9dec27b728c59e8abb/detection/
MIT License. Copyright (c) 2020-2021 Strontic.