DbgModel.dll

File Path: C:\Windows\system32\DbgModel.dll
Description: Windows Debugger Data Model

Hashes

Type	Hash
MD5	`CD89BB01FC245826610DA1F19F336A3B`
SHA1	`87CB02B65E8D1B38EDA9EAF34BA74831D5968AC8`
SHA256	`7AE4FB26E02BDA07F5B9264B4B1609D834F59A9CA77A345BBE6218314BF0C70F`
SHA384	`BEF6D2951111E5DD57CFC714023A5AA4FED62BB9C39F46E6E4C822CBD6BB7310EC07DB1D6F3BD8D8C6F6118A0B223156`
SHA512	`BA2E91CCBD4ED9FE05DC500F484013B59D09CEA95360289273CCF34E7DB199052EAE4D5981038710E854397D79C69E9C48C6CB55DEAA7D27A1743D2D0B8D8C16`
SSDEEP	`12288:O7s8RfwCkhdZQse4VsjT2ANlQ97uWUrase9j:Ks8A04Vsjs9Gg9`
IMP	`EECFCD6252735F3A25625800EDB27D0A`
PESHA1	`8037E20502CF56C2857B9ACB8113A56D31B94555`
PE256	`6CD35232E0FBA2BD409498020FBBFA73421E46BE843310252B3A9E6ACA0CF59F`

DLL Exports:

Function Name	Ordinal	Type
`CreateDataModelManager`	1	Exported Function

Signature

Status: Signature verified.
Serial: 3300000266BD1580EFA75CD6D3000000000266
Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: DbgModel.Dll
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 10.0.19041.1 (WinBuild.160101.0800)
Product Version: 10.0.19041.1
Language: English (United States)
Legal Copyright: Microsoft Corporation. All rights reserved.
Machine Type: 64-bit

File Scan

VirusTotal Detections: 0/72
VirusTotal Link: https://www.virustotal.com/gui/file/7ae4fb26e02bda07f5b9264b4b1609d834f59a9ca77a345bbe6218314bf0c70f/detection/

File Similarity (ssdeep match)

File	Score
C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\DbgModel.dll	99

MIT License. Copyright (c) 2020-2021 Strontic.