HvsiSettingsWorker.exe
- File Path:
C:\Windows\system32\HvsiSettingsWorker.exe
Hashes
| Type | Hash |
|---|---|
| MD5 | 248B44158748F3C7DCA5277360818C54 |
| SHA1 | 557E2E91C0812F3D3ECCF2D420C0D40FE782B398 |
| SHA256 | A9A61B8D6CF706AAC9C7CEAC78988A85CA05572E128E316B41262701FA86267E |
| SHA384 | C70858002DF2C641D9A32C6EEE377CD967E2391E0B5AE3EA6DA9AEB607EA086E6F9FBCA5B7500426720EA26449462390 |
| SHA512 | 0A389BD9100D256E04E84B8A5C486BE1EFCD087B6FFDCF9F63B745814B0BA73EF3D162DF0D40B150E260EAFD5CC18CD605C7C6A55737EAAE4B3AF4D36AA3CEAF |
| SSDEEP | 3072:8fs+BgDF7a7j00jQQw/QtkR0NUQNOncC4fYzd1e4cx1:+s+BgGY0MQw/QWaNXlfSd1b2 |
| IMP | 73FA5FA64AFF60B2BF419F3ED6B8BE1A |
| PESHA1 | 5F624731D3882BE56BBFB1F95B2A53ACEF084410 |
| PE256 | EBE131557B261FD840492FA3FE132E01B329091F9102ABE4F0E504FA5350E4B2 |
Runtime Data
Loaded Modules:
| Path |
|---|
| C:\Windows\System32\advapi32.dll |
| C:\Windows\system32\Bcp47Langs.dll |
| C:\Windows\System32\combase.dll |
| C:\Windows\system32\DNSAPI.dll |
| C:\Windows\system32\FirewallAPI.dll |
| C:\Windows\System32\GDI32.dll |
| C:\Windows\System32\gdi32full.dll |
| C:\Windows\system32\HvsiSettingsProvider.dll |
| C:\Windows\system32\HvsiSettingsWorker.exe |
| C:\Windows\System32\IMM32.DLL |
| C:\Windows\system32\IPHLPAPI.DLL |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\System32\msvcp_win.dll |
| C:\Windows\System32\msvcrt.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\SYSTEM32\ntmarta.dll |
| C:\Windows\System32\OLEAUT32.dll |
| C:\Windows\System32\RPCRT4.dll |
| C:\Windows\System32\sechost.dll |
| C:\Windows\System32\shcore.dll |
| C:\Windows\System32\SHELL32.dll |
| C:\Windows\System32\ucrtbase.dll |
| C:\Windows\System32\USER32.dll |
| C:\Windows\system32\USERENV.dll |
| C:\Windows\System32\win32u.dll |
| C:\Windows\System32\WS2_32.dll |
| C:\Windows\system32\WTSAPI32.dll |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266 - Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840 - Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
File Metadata
- Original Filename:
- Product Name:
- Company Name:
- File Version:
- Product Version:
- Language:
- Legal Copyright:
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/75
- VirusTotal Link: https://www.virustotal.com/gui/file/a9a61b8d6cf706aac9c7ceac78988a85ca05572e128e316b41262701fa86267e/detection
MIT License. Copyright (c) 2020-2021 Strontic.