EhStorPwdDrv.dll

File Path: C:\Windows\system32\drivers\UMDF\EhStorPwdDrv.dll
Description: Enhanced Storage Password Authentication Driver

Hashes

Type	Hash
MD5	`985DCEBD4A3568758F777D4F45C055E6`
SHA1	`23739DC5F0A4FB46666951540197B1E23419D198`
SHA256	`5B857CFFCCD4389C65C1FBEDEDFADA06B3AF3CE5922F6EDB11D7D80174A43798`
SHA384	`BE8D2D097D50D629745F5825C19D9F8FE8591D2258263C32FA5985D85F4088C489BCDDCBBF5120ECB9D12BA9D1878272`
SHA512	`08D255A5FD56991686F8F55F1AC2797F629AA783632CFE7548160467CB04CA8531823F7AE8F30236F446E790306DCBC645F8DCF6113BE9719BAE18511130E3FB`
SSDEEP	`1536:xW406qkh+3BJMqN+b2g9flVJMTzsznhKd+SRGA:Tw23znhD+T`
IMP	`534A0927DEFE4D5BB14C2CA60AD1D5ED`
PESHA1	`F3947B5D82EC545D2F274287D416889C1C6D8189`
PE256	`079C6DED44E489603F1066A638912565A90569C7FEE755499DE1203289C3401A`

DLL Exports:

Function Name	Ordinal	Type
`Microsoft_WDF_UMDF_Version`	2	Exported Function
`DllGetClassObject`	1	Exported Function

Signature

Status: Signature verified.
Serial: 3300000266BD1580EFA75CD6D3000000000266
Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: EhStorPwdDrv.DLL
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 10.0.19041.1 (WinBuild.160101.0800)
Product Version: 10.0.19041.1
Language: English (United States)
Legal Copyright: Microsoft Corporation. All rights reserved.
Machine Type: 64-bit

File Scan

VirusTotal Detections: 0/65
VirusTotal Link: https://www.virustotal.com/gui/file/5b857cffccd4389c65c1fbededfada06b3af3ce5922f6edb11d7d80174a43798/detection/

File Similarity (ssdeep match)

File	Score
C:\Windows\system32\DriverStore\FileRepository\ehstorpwddrv.inf_amd64_52a18c232ce44681\EhStorPwdDrv.dll	100

MIT License. Copyright (c) 2020-2021 Strontic.