CIDiag.exe
- File Path:
C:\Windows\system32\CIDiag.exe
- Description: CodeIntegrity Diagnostic Tool
Hashes
| Type |
Hash |
| MD5 |
64DE2494A5F31E732F3ADDB029841441 |
| SHA1 |
BC0AC2AF60ECA874BD44ECAE885E9F539D46F8EB |
| SHA256 |
5837847870A5ACEB61E8AA826875495E73AD05E8CC544424A431A2B4CCC48252 |
| SHA384 |
4B45A040618ACCE964C07F627F0809CA6B5A5D0F2C62514CDB387B81410C9887B640AE544A012376A2C6060C47355033 |
| SHA512 |
7693C082ECA3D001CE68461B8124469D1992DF78C24D2B86FF176687459B2857FD08CD3F27F079A67B6C2DB1A8F768E70D783DBAE406857E224F8FEDE8970417 |
| SSDEEP |
768:ZXNZZo0h/uuk9rIyeZrc35mvI++uP9w7l03VXQdr+gT8RdU:ZdZZo0h/uuk9rIycQMvI++F7++pVT8Re |
| IMP |
792497AF5DD0DF4A915F2F6B0FE22F3D |
| PESHA1 |
A8D9232C6136B6BFB283F3F23FB15D424DDA957D |
| PE256 |
C012BEFCE1587D625E3B44AA85A0A66F5F4BE912585A764F0932DC36A53C9C7F |
Runtime Data
Usage (stdout):
Usage: "CIDiag.exe /start", "CIDiag.exe /stop <outputpath>", or "CIDiag.exe /stop /nologs <outputpath>"
Loaded Modules:
| Path |
| C:\Windows\system32\CIDiag.exe |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: CIDiag.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.329 (WinBuild.160101.0800)
- Product Version: 10.0.19041.329
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/70
- VirusTotal Link: https://www.virustotal.com/gui/file/5837847870a5aceb61e8aa826875495e73ad05e8cc544424a431a2b4ccc48252/detection
MIT License. Copyright (c) 2020-2021 Strontic.