CoreShellAPI.dll
- File Path:
C:\Windows\system32\CoreShellAPI.dll
- Description: CoreShellAPI
Hashes
| Type |
Hash |
| MD5 |
C7B808A9DF2D560C54C92FBEAA031715 |
| SHA1 |
400FE0013FF8A9DD9A2D9138D7C479C8752EDD95 |
| SHA256 |
3CA9AD5C2F07217E8B261DF9EAD610FC4CA62A72777B708CF856BE0BE84A13E8 |
| SHA384 |
4728011CCE0182FDA71CDD95C2297452F4BBAE3845BC9C33CC24F47A979AC7CFD180B343FB28E2334ED127A00AB983AE |
| SHA512 |
F542F3604A4D23DD37A7EC9F0C5A39568440EE929F2F3C84164E0A792ECB6782802F8AB29DE0F6F5A23EB72D2396BDCEA7A3CF7471684886C6241660AD120C96 |
| SSDEEP |
6144:wJp1iMyrGWfwfTNRbcDyZKFolayrcHstzMRcj2SzCKiLfGttJ/IC6g50:omMyrI8MblayrcHSC2riLfGtH76gi |
| IMP |
2375A84EFF1A865CD50326DEB1A3D767 |
| PESHA1 |
8A5FED0DBB2933191E27D1B6A5595425AEFAB771 |
| PE256 |
CB3A131166CC3AF821FCC0EAB93E68180DAEF9F1588D7641A6B876A69EE254C9 |
DLL Exports:
| Function Name |
Ordinal |
Type |
DllGetClassObject |
3 |
Exported Function |
DllGetActivationFactory |
2 |
Exported Function |
DllCanUnloadNow |
1 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: CoreShellAPI.dll
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.388 (WinBuild.160101.0800)
- Product Version: 10.0.19041.388
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/71
- VirusTotal Link: https://www.virustotal.com/gui/file/3ca9ad5c2f07217e8b261df9ead610fc4ca62a72777b708cf856be0be84a13e8/detection/
MIT License. Copyright (c) 2020-2021 Strontic.