- File Path:
C:\Windows\system32\DataStoreCacheDumpTool.exe
Hashes
| Type |
Hash |
| MD5 |
2960A807CA0701525147162FC039C750 |
| SHA1 |
D358274B84F61C48537C0F7EB4F5B88FF57D12D7 |
| SHA256 |
F27AB8B4496B88E407FD4AB3AF93AED6FE7719F96D4993CDC64CB038659AFDA9 |
| SHA384 |
3CEB04CE93456AA8437AD02C4674C239A8134D2CCFEAEA8513FDFB5BA35741041304AA9368BD01240402E269BCF403D4 |
| SHA512 |
2DB339089B0F01515562E2D15E5BB246C8DA74DB1704F848BD62A889A8BD5A805645A59984A9D1722A7F5C2F84CD5687D769A3D0EF2829F8A7912BE2CEFC8E6B |
| SSDEEP |
3072:25rG4qRgHvtZxReWh3GCbaoY9I23Qc28LpFRdeqKLjHZ6B49KNPh:25rG/RgHvOWh3GCbaoYls6MKNP |
| IMP |
C491B3BD905877FC1C844F4EF62647C9 |
| PESHA1 |
45DFB08C215C04B21EFC8D364E3363EBC20A3AD4 |
| PE256 |
38396329181D3DDA0F78A80E7B203D938384AE920AFDD1E8DEE8BF1F9A0A89ED |
Runtime Data
Loaded Modules:
| Path |
| C:\Windows\system32\DataStoreCacheDumpTool.exe |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
Signature
- Status: Signature verified.
- Serial:
33000002EC6579AD1E670890130000000002EC
- Thumbprint:
F7C2F2C96A328C13CDA8CDB57B715BDEA2CBD1D9
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename:
- Product Name:
- Company Name:
- File Version:
- Product Version:
- Language:
- Legal Copyright:
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/73
- VirusTotal Link: https://www.virustotal.com/gui/file/f27ab8b4496b88e407fd4ab3af93aed6fe7719f96d4993cdc64cb038659afda9/detection
MIT License. Copyright (c) 2020-2021 Strontic.