PSEvents.dll

File Path: C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PSEvents.dll
Description: Microsoft PowerShell Crimson log Message Dll

Hashes

Type	Hash
MD5	`5BB485E5D90F7CA777E859DEEB25F133`
SHA1	`00EF423867F01961A588F4DEE301F0AE27D549D6`
SHA256	`9DE7059FB025D63EA65B6A99C3666F0D676EC27785A278168F556B6154E040BC`
SHA384	`0E23998822E5E8E5F317D1986452C5DDA1EDA083440CE4057212E2D052F7C01022AD273D7584FE9E9DCBE846DC44BCF9`
SHA512	`9674797E6AD9A2504146F7DCC86A3A5D3F46DFAED043237EE3DBA1FED1A0C10A6124F0132157D3C04A798F184D1B06F4A481F568B5DAF0732FDA0B7884D63948`
SSDEEP	`1536:k5BBAbK0FNF39Vh3Q530O/VXIpJhODn58awXdA35XauG28nk3BNijH8N:k5BBApTx9Vh3Q530O/VXIpJhODn58awy`
PESHA1	`0EF233ED679839A69C3996A9C9ED751F2D75CC51`
PE256	`1944F8E33327309A611C85F34F057BAC950EFD1A056A6A9CBC67E81EA37473A8`

Signature

Status: Signature verified.
Serial: 3300000266BD1580EFA75CD6D3000000000266
Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: PSEvents.DLL.MUI
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 10.0.19041.1 (WinBuild.160101.0800)
Product Version: 10.0.19041.1
Language: English (United States)
Legal Copyright: Microsoft Corporation. All rights reserved.
Machine Type: 32-bit

File Scan

VirusTotal Detections: 0/71
VirusTotal Link: https://www.virustotal.com/gui/file/9de7059fb025d63ea65b6a99c3666f0d676ec27785a278168f556b6154e040bc/detection/

File Similarity (ssdeep match)

File	Score
C:\Windows\system32\WindowsPowerShell\v1.0\PSEvents.dll	99

MIT License. Copyright (c) 2020-2021 Strontic.