PerfBoost.exe
- File Path:
C:\Program Files (x86)\Microsoft Office\root\Office16\PerfBoost.exe
- Description: Microsoft ClickToRun Virtualization Optimization
Hashes
| Type |
Hash |
| MD5 |
639E8FBAD41C5FA24B466837E2CE61EC |
| SHA1 |
4929E68FD58679B60F77837BD5EF6DD921D24546 |
| SHA256 |
43AC8F2669E88400E8F93936E88836DD02223EE7936B59689A987C3C178DF951 |
| SHA384 |
B5A352CDC73A4FE046655321201AE8141C0D0DF5460CB6ADA62ED5C1115FEB2373CA202C93B34571F66BF95CB09E5CAE |
| SHA512 |
40247A7A78CC4A7959AF5CE1A293861B1C05447ABB8AEC787E47C6AF9B8163BE2F8E79DFA5A879F1096F76B36D0AFFB529D4FA3F5893B0C79C2CCF8497A10E9D |
| SSDEEP |
12288:DktrAtTAoEqPjIQ+KIlt1O1jDkL6QxxcNZn6qLWnpyOCaPb:E09RjIXlt6DkDvqLWc5az |
| IMP |
749D29B56AAADD768D2154FE6878AAD1 |
| PESHA1 |
7255F515F2FDA25E53FE2EF4AA3A3B680AC25D4A |
| PE256 |
8C87CA1AA86F1321467F5A24943174BBA05C20906996528977A25401EB1CAA61 |
Runtime Data
Child Processes:
PerfBoost.exe WerFault.exe
Open Handles:
| Path |
Type |
| (R–) C:\ProgramData\Microsoft\Office\ClickToRunPackageLocker |
File |
| (RW-) C:\Users\user\Documents |
File |
| (RW-) C:\Windows |
File |
| \BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 |
Section |
| \BaseNamedObjects\NLS_CodePage_437_3_2_0_0 |
Section |
Loaded Modules:
| Path |
| C:\Program Files (x86)\Microsoft Office\root\Office16\PerfBoost.exe |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\wow64.dll |
| C:\Windows\System32\wow64cpu.dll |
| C:\Windows\System32\wow64win.dll |
Signature
- Status: Signature verified.
- Serial:
33000002CE7C9ACE7D905ED2B70000000002CE
- Thumbprint:
B10607FB914700B40F794610850C1DE0A21566C1
- Issuer: CN=Microsoft Code Signing PCA 2010, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: PerfBoost.exe
- Product Name: Microsoft ClickToRun Virtualization Optimization
- Company Name: Microsoft Corporation
- File Version: 16.0.12527.20482
- Product Version: 16.0.12527.20482
- Language: Language Neutral
- Legal Copyright:
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/72
- VirusTotal Link: https://www.virustotal.com/gui/file/43ac8f2669e88400e8f93936e88836dd02223ee7936b59689a987c3c178df951/detection/
MIT License. Copyright (c) 2020-2021 Strontic.