PresentationSettings.exe
- File Path:
C:\Windows\system32\PresentationSettings.exe - Description: Microsoft Mobile PC Presentation Adaptability Client
Hashes
| Type | Hash |
|---|---|
| MD5 | D95F3087AC0C9E29F7C9D56EC4D85E93 |
| SHA1 | 895219259FF21ACF7586F74CB3DAA1CD549F1FEA |
| SHA256 | A1F2954DBB7D9111FB2DC9497A320E29E3A0CC2C00AFE9D96C58F78B1247CD70 |
| SHA384 | A633E24FB74F7944E56D156A4F05AEC2EE3250E25AAECCDEB77C83978C7C65DFC410646C544F045DB23776A6D004A60B |
| SHA512 | B0C5123CE169B2D08805C9E4461A1E1CF16C0DBBC2B2D957AEC07827FDBE9A06D49726BCDACE656F147F42F3F72CFAA90FFB6B2713E78F35924FF22533BB6151 |
| SSDEEP | 6144:79iUJm0KX24r6IeeYpxpts2xmhfGKraEH:5iiyuIeeUQ2Gfn |
| IMP | 2FD654F4DE23D9E1562F109BD5F81CEB |
| PESHA1 | 57A36CFA1C9C00E64BF2661012ECECB6261F569C |
| PE256 | 07E520636EEFA381C835B511890034B28C7B23680FAF6A9ED6C0DA6DF87C4B81 |
Runtime Data
Loaded Modules:
| Path |
|---|
| C:\Windows\System32\ADVAPI32.dll |
| C:\Windows\System32\bcryptPrimitives.dll |
| C:\Windows\System32\cfgmgr32.dll |
| C:\Windows\System32\combase.dll |
| C:\Windows\System32\COMDLG32.dll |
| C:\Windows\System32\cryptsp.dll |
| C:\Windows\System32\GDI32.dll |
| C:\Windows\System32\gdi32full.dll |
| C:\Windows\System32\IMM32.DLL |
| C:\Windows\System32\kernel.appcore.dll |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\System32\msvcp_win.dll |
| C:\Windows\System32\msvcrt.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\OLEAUT32.dll |
| C:\Windows\System32\powrprof.dll |
| C:\Windows\system32\PresentationSettings.exe |
| C:\Windows\System32\profapi.dll |
| C:\Windows\System32\RPCRT4.dll |
| C:\Windows\System32\sechost.dll |
| C:\Windows\System32\shcore.dll |
| C:\Windows\System32\SHELL32.dll |
| C:\Windows\System32\SHLWAPI.dll |
| C:\Windows\system32\SspiCli.dll |
| C:\Windows\System32\ucrtbase.dll |
| C:\Windows\System32\USER32.dll |
| C:\Windows\System32\win32u.dll |
| C:\Windows\System32\windows.storage.dll |
| C:\Windows\system32\WINMM.dll |
| C:\Windows\system32\WINMMBASE.dll |
| C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17763.1518_none_de6e2bd0534e2567\COMCTL32.dll |
| C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.17763.1518_none_0f591eb5ade09f35\gdiplus.dll |
Signature
- Status: Signature verified.
- Serial:
33000001C422B2F79B793DACB20000000001C4 - Thumbprint:
AE9C1AE54763822EEC42474983D8B635116C8452 - Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
File Metadata
- Original Filename: PresentationSettings.exe.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.17763.1 (WinBuild.160101.0800)
- Product Version: 10.0.17763.1
- Language: English (United States)
- Legal Copyright: Copyright (C) Microsoft. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/68
- VirusTotal Link: https://www.virustotal.com/gui/file/a1f2954dbb7d9111fb2dc9497a320e29e3a0cc2c00afe9d96c58f78b1247cd70/detection/
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.