CoreShellExtFramework.dll
- File Path:
C:\Windows\system32\CoreShellExtFramework.dll
- Description: Core Shell SI Host Extension Framework for Composable Shell
Hashes
| Type |
Hash |
| MD5 |
77CAC4FF6C7A1AEC162E22D885126DE7 |
| SHA1 |
1E927B497D085252A537AAF8D59D6FB517B39AE5 |
| SHA256 |
C90BE7758FD7DA0E6660F2B113FF85094358C9857478E3292FFCF31A387A9C27 |
| SHA384 |
142F288C3EFCA9ADFBDEE3F3AA576E2BD0C7374FAD3593802753B42AA247BCC64F9F40171F72DA258DF48929FA0EF16A |
| SHA512 |
618035B4893B1584DF05D0B4F6F25FAAD65C6E9F2560FC271AAFE6B3E4811438A519AA5389FF16E0A0F3B675238796294415A24C43CD350CBDCCCAE4A606ABC4 |
| SSDEEP |
1536:6+G/XXcBv7ES6UaqMUwZZjh4tMLaUQMXGL+uSq9xVOanlo7jQDLLKzQK9st6sPfB:6X1lf9AYGquSq9dl9vhtJPJ |
| IMP |
807D4BF3D20FD89EDEDB7FF96259A467 |
| PESHA1 |
410D338F9DF107BCB539CB4A1615446974C836A7 |
| PE256 |
41662D4DB9920BABD6F74734A258CD2DC81DEE352804B39A59053B9B0CF2719C |
DLL Exports:
| Function Name |
Ordinal |
Type |
DllGetClassObject |
3 |
Exported Function |
DllGetActivationFactory |
2 |
Exported Function |
DllCanUnloadNow |
1 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: CoreShellExtFramework.dll
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/72
- VirusTotal Link: https://www.virustotal.com/gui/file/c90be7758fd7da0e6660f2b113ff85094358c9857478e3292ffcf31a387a9c27/detection/
MIT License. Copyright (c) 2020-2021 Strontic.