BackgroundTransferHost.exe
- File Path:
C:\Windows\SysWOW64\BackgroundTransferHost.exe
- Description: Download/Upload Host
Hashes
| Type |
Hash |
| MD5 |
1BE6B2C519B9E212265C30CBA6319B88 |
| SHA1 |
A59AC22F93C5CCBA8B9DD5EF1F0D649B4844AB14 |
| SHA256 |
3D395FE2C562D0222CB77D89219685A22FF8ADA9FEC0D2B55D1E8137D864E8B1 |
| SHA384 |
9FDD19CB4E429906E55F6781D72567E733E0FF5113112846DB54FEC28D5C401004DCEC9241C2CE1A3AF4AC5A38480A26 |
| SHA512 |
EDA24CFD6522B703A68CCF1C6DDED793021674A35EE8E115F5735A4E374D99AFAD2276B5C0236721137EC05F2F906235463D127E6BC2F3FC113B676058EC8B6A |
| SSDEEP |
384:bF4OfAVPLg4rv13S/nxspKMweBHW0ggWbQE0g7qW2RPT/8rFeZmJhu:hpIV04m1eB2T2a |
| IMP |
2C84391D64B2AF34A9B9E60431B39091 |
| PESHA1 |
E966BD328F228A56714305381E3F214084D162A3 |
| PE256 |
66E2FB49E8F1819B4CB05D54D8CCFF9F1EFBC301BD678C387552C1BBFC77765D |
Runtime Data
Loaded Modules:
| Path |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\wow64.dll |
| C:\Windows\System32\wow64cpu.dll |
| C:\Windows\System32\wow64win.dll |
| C:\Windows\SysWOW64\BackgroundTransferHost.exe |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: BackgroundTransferHost.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/76
- VirusTotal Link: https://www.virustotal.com/gui/file/3d395fe2c562d0222cb77d89219685a22ff8ada9fec0d2b55d1e8137d864e8b1/detection
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.