HvsiSettingsWorker.exe

Hashes

Type	Hash
MD5	`1CB9BF0632734CD559F34E10AA29F211`
SHA1	`8F898BA3B0C812501CA8526DD318ECF157D6D0F8`
SHA256	`E9503B7DFAA39E57374CB82CA8FAA4E7A6913A2A0FDB347266DAF270790014DA`
SHA384	`E6E51AB9EC1DCFFFC01840ABC5C13E69C987CD50EE9579576C89F24C4590DC1DAEBEA804E7702BF0E7DC370DB1296E79`
SHA512	`BA186F5A9F24CB5A56179DCC728DA3F3F4172BCF2E1EE41A8115629F820066EBB48F9879A8E6CC7C4F9FBD45662F18264C5E1E69172CBA3E414501BFD046AF63`
SSDEEP	`3072:5/PtSivsu//t1+ivDpu7qpdT3ln6zijNU+NW/DoPGiR2D4SeTtXED:9PtSivsmqi7p/dT3lZNfkD4S8tUD`
IMP	`15CCE8E4B9134D30C5E6ACAC9CAE4354`
PESHA1	`57242FC97F7540BAE66F7695FCEDD35F4457C523`
PE256	`3CE4EF5D6AD4F267CB3C69569F3B29C90B5EEC15C005553CC169BF1FF8DD002C`

Path
C:\Windows\System32\advapi32.dll
C:\Windows\System32\combase.dll
C:\Windows\System32\GDI32.dll
C:\Windows\system32\HvsiSettingsProvider.dll
C:\Windows\system32\HvsiSettingsWorker.exe
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\System32\msvcp_win.dll
C:\Windows\System32\msvcrt.dll
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\OLEAUT32.dll
C:\Windows\System32\RPCRT4.dll
C:\Windows\System32\sechost.dll
C:\Windows\System32\shcore.dll
C:\Windows\System32\SHELL32.dll
C:\Windows\System32\ucrtbase.dll
C:\Windows\System32\USER32.dll
C:\Windows\system32\USERENV.dll
C:\Windows\System32\win32u.dll
C:\Windows\System32\WS2_32.dll

Status: Signature verified.
Serial: 33000002EC6579AD1E670890130000000002EC
Thumbprint: F7C2F2C96A328C13CDA8CDB57B715BDEA2CBD1D9
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

VirusTotal Detections: 0/73
VirusTotal Link: https://www.virustotal.com/gui/file/e9503b7dfaa39e57374cb82ca8faa4e7a6913a2a0fdb347266daf270790014da/detection