- File Path:
C:\Windows\system32\DataStoreCacheDumpTool.exe
Hashes
| Type |
Hash |
| MD5 |
F077B7ECA3D53F92FBC2B3094424E2E4 |
| SHA1 |
CFDE70615AD0053FB9B4D5501658D004031B1D9D |
| SHA256 |
77DCCA58D53BB9333014E1258B9C2B52F752A30CDB10A008A3188BB7C28E5A50 |
| SHA384 |
86041E59FC41227AA542F923626D076268DB6205307DF500FAEFE6FEA433502E2799FCDCDD65EEDF93184B1DEA892B0D |
| SHA512 |
6363CB03A70A59A37CDE6167B92540C374D4B170C3C0B19B7693461030424C406AC944BE7C652B30BD96F74029A677C92E05C53B1EAB87CD258C5246FC5A66FF |
| SSDEEP |
3072:/JIDH3U0lpti0bwwIIMiU1SFxoVsvmn9T4cwXLpFRdeJQtb3Ydn:/JIDXB380C1SFxoVseQzY |
| IMP |
C98812713D924D2F1757560B5847D66E |
| PESHA1 |
AF20297ED4DEB79B72C43120D74F330A57779310 |
| PE256 |
7B6EF4944E81C2728925A661F1A4084E541E958213631D8B71A5255B94395B85 |
Runtime Data
Loaded Modules:
| Path |
| C:\Windows\system32\DataStoreCacheDumpTool.exe |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename:
- Product Name:
- Company Name:
- File Version:
- Product Version:
- Language:
- Legal Copyright:
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/69
- VirusTotal Link: https://www.virustotal.com/gui/file/77dcca58d53bb9333014e1258b9c2b52f752a30cdb10a008a3188bb7c28e5a50/detection/
MIT License. Copyright (c) 2020-2021 Strontic.