MpSigStub.exe

  • File Path: C:\Windows\system32\MpSigStub.exe
  • Description: Microsoft Malware Protection Signature Update Stub

Hashes

Type Hash
MD5 89614F78EABF194EF6586F7807B6A1BC
SHA1 2F4FC0C4E204F2A430D0BFB9D9BB166C42F5D767
SHA256 D0772BFB0687E068D4D21749C90DBAC7FB7F71F74F3A8CAF6D69CAC483A1C17F
SHA384 9753C9D305AF70256801AECD2F4A32E059E0988E8B565C6F63D46B6CD15B1ED98490736958167405CB716A82042C8B73
SHA512 F430E40714A7CF74141792BF1E2E364D100ADF6B44324BCBD1FF3826BBBE86FFFA1A301CE5436771A61A761083A0AC2DBF617685195A1F662E50DFD9B8E91DDC
SSDEEP 12288:1ukxwlT4Opldy3LDSaapZKt+t5lqvbWR0bwpAUUFNECeNPF/z:ckx48OplQ3LDqpZKt+t7gb2tIDECelFr
IMP 9EC6E03165E3120AE00585DA50B9B538
PESHA1 3561565AD66948B2B96693646FB36F0CD50AF42F
PE256 784929591FD299E7F4979C40873065C0547D6EE597F69D23A898523085B61794

Runtime Data

Loaded Modules:

Path
C:\Windows\System32\ADVAPI32.dll
C:\Windows\System32\bcryptPrimitives.dll
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\system32\MpSigStub.exe
C:\Windows\System32\msvcrt.dll
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\RPCRT4.dll
C:\Windows\System32\sechost.dll
C:\Windows\system32\version.dll

Signature

  • Status: Signature verified.
  • Serial: 33000002C2813CEF6A1E0924010000000002C2
  • Thumbprint: 019B59FACD194B9FB72232CD7F1FF21A2CE8C5A4
  • Issuer: CN=Microsoft Code Signing PCA 2010, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: MpSigStub.exe
  • Product Name: Microsoft Malware Protection
  • Company Name: Microsoft Corporation
  • File Version: 1.1.16900.5 (f6fe444569f9663015a6e1992ed19388cf741704)
  • Product Version: 1.1.16900.5
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: 0/70
  • VirusTotal Link: https://www.virustotal.com/gui/file/d0772bfb0687e068d4d21749c90dbac7fb7f71f74f3a8caf6d69cac483a1c17f/detection/

MIT License. Copyright (c) 2020-2021 Strontic.