- File Path:
C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
Hashes
| Type |
Hash |
| MD5 |
0DB38D80621EF840F53474BA93D631EB |
| SHA1 |
761144AFC51F156F0C44D7EB45C94B9A4591C996 |
| SHA256 |
9532923C2590008828EAC235600BBE5DE576BAF1AFEF8E30E0A47FFA7EAE7E14 |
| SHA384 |
83E68C29E0BD59F7ACA6D53AB5BF41D02C30FC7381E6F2B03AB968EA99FFAFC6F9B94BF0713EC2FAAC7F3A995CA46202 |
| SHA512 |
DCA0E44810E3CF16BBF7C58AEDD8997143007F2DB123931011818B231AEA5635812A88ED3EE97FEAB45351637739619045A69C6DA7AE62DAC2ABDB62A4A613BE |
| SSDEEP |
3072:Xmp1Ke7tAjEpt+CrlScP2ZlhuHsLoDWxOdLpFveezem47HH:XmT/p8YP2bhQWket7n |
| IMP |
EBBE582DE4A3A5169E38D2110D397318 |
| PESHA1 |
BB7A6E39834C22718F8739068EFBFF846273C2BB |
| PE256 |
B48EEC207BD7FEC050743758A6FD614FA38CE783B94CE8BDC97035870C99FA98 |
Runtime Data
Loaded Modules:
| Path |
| C:\WINDOWS\system32\DataStoreCacheDumpTool.exe |
| C:\WINDOWS\System32\KERNEL32.DLL |
| C:\WINDOWS\System32\KERNELBASE.dll |
| C:\WINDOWS\SYSTEM32\ntdll.dll |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED
- Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename:
- Product Name:
- Company Name:
- File Version:
- Product Version:
- Language:
- Legal Copyright:
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/74
- VirusTotal Link: https://www.virustotal.com/gui/file/9532923c2590008828eac235600bbe5de576baf1afef8e30e0a47ffa7eae7e14/detection
MIT License. Copyright (c) 2020-2021 Strontic.