ManageCI.dll

File Path: C:\Windows\system32\ManageCI.dll
Description: Code Integrity Management Interface

Hashes

Type	Hash
MD5	`0CBCA0DA7C38FDF52146D046178FD6C6`
SHA1	`0077085515339ADBF303971B4449827BDC7CAF2E`
SHA256	`9169C4502FA22A85CA117E87EA93FFFE411A7D82537DADB4F4E931B9BF2C7299`
SHA384	`6BB37733ACE00CF853A28C35352A4CB3BE2206F44A4EA5466CD288170DF90288597EAA0C38666690616CDDCABF343C0C`
SHA512	`D0063551F14146A57B89E04E22FA2932F6A53E91C06DA73AAC77E1C3C574B3969899D109EA35AF8186D34C14DF6A39C934CE326EC076EE33F2C77057E2E8FD83`
SSDEEP	`6144:gr5oIMeF1UJt7qM7odtpnCq2OGtycNBQo:Q5TMQw757odtpngOGtycI`
IMP	`2F7DF33D707DC08B35E78DA4C7BAAA6B`
PESHA1	`D5C5800BB5B39BFA547452EF06A86F806B48084E`
PE256	`499A9B5F293722C61FA316349DC25F8C4729A5D6BFD5D542033A378EFDB4B1E6`

DLL Exports:

Function Name	Ordinal	Type
`ManageCI_GetPolicyInformation`	35	Exported Function
`ManageCI_GetPoliciesAuthorizedBySBCPToken`	34	Exported Function
`ManageCI_GetSBCPTokenByID`	36	Exported Function
`ManageCI_GetSModeUnlockID`	38	Exported Function
`ManageCI_GetSBCPTokensForPolicyID`	37	Exported Function
`ManageCI_GetCIPolicyByID`	33	Exported Function
`ManageCI_Commit`	29	Exported Function
`ManageCI_BeginUpsertCIPolicy`	28	Exported Function
`ManageCI_End`	30	Exported Function
`ManageCI_GetAllSBCPTokens`	32	Exported Function
`ManageCI_GetAllCIPolicies`	31	Exported Function
`ParsePolicy`	19	Exported Function
`ManageCI_ValidateState`	45	Exported Function
`Rollback`	20	Exported Function
`ValidateState`	22	Exported Function
`Start`	21	Exported Function
`ManageCI_Start`	44	Exported Function
`ManageCI_GetTokenInformation`	40	Exported Function
`ManageCI_GetTenantID`	39	Exported Function
`ManageCI_IsInProgress`	41	Exported Function
`ManageCI_Rollback`	43	Exported Function
`ManageCI_ParsePolicy`	42	Exported Function
`ManageCI_BeginTransaction`	27	Exported Function
`GetAllCIPolicies`	8	Exported Function
`End`	7	Exported Function
`GetAllSBCPTokens`	9	Exported Function
`GetPoliciesAuthorizedBySBCPToken`	11	Exported Function
`GetCIPolicyByID`	10	Exported Function
`Commit`	6	Exported Function
`BeginRemoveSBCPToken`	2	Exported Function
`BeginRemoveCIPolicy`	1	Exported Function
`BeginSetSBCPToken`	3	Exported Function
`BeginUpsertCIPolicy`	5	Exported Function
`BeginTransaction`	4	Exported Function
`ManageCI`	23	Exported Function
`IsInProgress`	18	Exported Function
`ManageCI_BeginRemoveCIPolicy`	24	Exported Function
`ManageCI_BeginSetSBCPToken`	26	Exported Function
`ManageCI_BeginRemoveSBCPToken`	25	Exported Function
`GetTokenInformation`	17	Exported Function
`GetSBCPTokenByID`	13	Exported Function
`GetPolicyInformation`	12	Exported Function
`GetSBCPTokensForPolicyID`	14	Exported Function
`GetTenantID`	16	Exported Function
`GetSModeUnlockID`	15	Exported Function

Signature

Status: Signature verified.
Serial: 330000023241FB59996DCC4DFF000000000232
Thumbprint: FF82BC38E1DA5E596DF374C53E3617F7EDA36B06
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: ManageCI.dll.mui
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 10.0.19041.1 (WinBuild.160101.0800)
Product Version: 10.0.19041.1
Language: English (United States)
Machine Type: 64-bit

File Scan

VirusTotal Detections: 0/72
VirusTotal Link: https://www.virustotal.com/gui/file/9169c4502fa22a85ca117e87ea93fffe411a7d82537dadb4f4e931b9bf2c7299/detection/