ResetEngine.dll
- File Path:
C:\Windows\system32\ResetEngine.dll
- Description: Push-Button Reset Engine
Hashes
| Type |
Hash |
| MD5 |
BE9234682A3E294022282C62EBF0018E |
| SHA1 |
C751563F2D6F048C7E19157D04807503002AA291 |
| SHA256 |
DE1E0859B51E358744ACC0D1936BF126BBED46C368F569A214CB0175844DB1F3 |
| SHA384 |
A48BA5D995BB71D8A6234F4C017758748925F266350FA95A6BEEB231756542F383CFD74EFF37709A0241E11462B0894D |
| SHA512 |
C6E6E6716523314A024B1042F6BCD09523FD643A810B077C7AC7A3D8CC9B419BCADE09ED290DD7A3D38E9C76F617A0B8A8F21EC7209F3B0890A8E3BF4092BEBE |
| SSDEEP |
49152:4mzD/XC6W//ezokU+0ih7TidlDYw1Oad2bcfzhydJvUPpxAJQ5+DsX:mAqxAJi+D2 |
| IMP |
FF5369F2CD20FAE6FD083871B6EE919A |
| PESHA1 |
B4942D304AEF26C5DD8AA5F7B25D3AF86BBCF95F |
| PE256 |
874B073658085518CF4E40B3E089653CD5016BEA77395B9AF3BFD80AFDC0A3B5 |
DLL Exports:
| Function Name |
Ordinal |
Type |
ResetReleaseMedia |
34 |
Exported Function |
ResetProvisionMedia |
33 |
Exported Function |
ResetPrepareSession |
32 |
Exported Function |
ResetReturnToOldOS |
37 |
Exported Function |
ResetResumeLog |
36 |
Exported Function |
ResetReleaseSession |
35 |
Exported Function |
ResetNotifyCancel |
28 |
Exported Function |
ResetNotifyAcknowledgeWarning |
27 |
Exported Function |
ResetLoadSession |
26 |
Exported Function |
ResetPayloadEnabled |
31 |
Exported Function |
ResetPayloadConnection |
30 |
Exported Function |
ResetNotifyConfirm |
29 |
Exported Function |
ResetSetDataPoint |
38 |
Exported Function |
ResetUserLogon |
47 |
Exported Function |
ResetUnstageOfflineBoot |
46 |
Exported Function |
ResetUndo |
45 |
Exported Function |
ResetWipeSystem |
50 |
Exported Function |
ResetWillSuspendProtection |
49 |
Exported Function |
ResetValidateScenario |
48 |
Exported Function |
ResetStageOfflineBoot |
41 |
Exported Function |
ResetSetTestFlag |
40 |
Exported Function |
ResetSetStringPoint |
39 |
Exported Function |
ResetTraceClientInfo |
44 |
Exported Function |
ResetSuspendSession |
43 |
Exported Function |
ResetSubmitTelemetry |
42 |
Exported Function |
ResetCreateSession |
9 |
Exported Function |
ResetCreateMedia |
8 |
Exported Function |
ResetConnectCloud |
7 |
Exported Function |
ResetDownloadImage |
12 |
Exported Function |
ResetDisarmBootTrigger |
11 |
Exported Function |
ResetDisabledByPolicy |
10 |
Exported Function |
ResetCancelCleanup |
3 |
Exported Function |
ResetArmBootTrigger |
2 |
Exported Function |
ResetApplyCloudPartitionLayout |
1 |
Exported Function |
ResetCloudEndpointAvailable |
6 |
Exported Function |
ResetClearSession |
5 |
Exported Function |
ResetCancelImageDownload |
4 |
Exported Function |
ResetDownloadPayload |
13 |
Exported Function |
ResetGetScenarioType |
22 |
Exported Function |
ResetGetRestoredApps |
21 |
Exported Function |
ResetGetMediaSize |
20 |
Exported Function |
ResetHasCustomizations |
25 |
Exported Function |
ResetGetTelemetrySessionID |
24 |
Exported Function |
ResetGetTargetVolume |
23 |
Exported Function |
ResetExecOnline |
16 |
Exported Function |
ResetExecCleanup |
15 |
Exported Function |
ResetEnterOOBE |
14 |
Exported Function |
ResetGetDiskSpaceRequired |
19 |
Exported Function |
ResetGetDataVolumes |
18 |
Exported Function |
ResetExecute |
17 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: RESETENGINE.DLL.MUI
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/66
- VirusTotal Link: https://www.virustotal.com/gui/file/de1e0859b51e358744acc0d1936bf126bbed46c368f569a214cb0175844db1f3/detection/
MIT License. Copyright (c) 2020-2021 Strontic.