StorSvc.dll

  • File Path: C:\Windows\system32\StorSvc.dll
  • Description: Storage Services

Hashes

Type Hash
MD5 C33398DD47F9E96C49058F195D70E6DD
SHA1 167E86EA1343585A2DB54A2357FFF608BECD9B4F
SHA256 25AF20BFE3ECA6BF61FD50433C3A0E21C10E88A59AAC3C04F2E7E97D4D9242BD
SHA384 451C71D56E399653B01C7189A52AA117C040B234DB4C4EA5A45C5006E4B785AE11A6C13514AD77A9934F80C70626E062
SHA512 275B1AE29EBF888D48440563D6DF8D6BB749BC225188D43D994953F8FDFBBFB732827D3838CEFAC7E158AE7E6CEE1DD09817643C1FA286D544C2EADDCFB3C44E
SSDEEP 24576:rh+AGwEhr0+cTq+G+5+8+Y+S8+4+o9zrdMEo8R6lbs79s:r5GsCVa6Bs
IMP 90A0F17B0B0E65829AE70225B1BF6760
PESHA1 8E556D1095809B202E61D76DCE67079B00162512
PE256 36FCE94B4C0EE168E38EEEDB91B085563862ED2D1C3D6AEE0DB2C212D7F3227C

DLL Exports:

Function Name Ordinal Type
ServiceMain 1 Exported Function
SvchostPushServiceGlobals 2 Exported Function
DllGetClassObject 5 Exported Function
DllCanUnloadNow 3 Exported Function
DllGetActivationFactory 4 Exported Function

Signature

  • Status: Signature verified.
  • Serial: 3300000266BD1580EFA75CD6D3000000000266
  • Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: StorSvc.dll.mui
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.19041.1 (WinBuild.160101.0800)
  • Product Version: 10.0.19041.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: 0/65
  • VirusTotal Link: https://www.virustotal.com/gui/file/25af20bfe3eca6bf61fd50433c3a0e21c10e88a59aac3c04f2e7e97d4d9242bd/detection/

Possible Misuse

The following table contains possible examples of StorSvc.dll being misused. While StorSvc.dll is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
malware-ioc part1.adoc www.storsvc.org © ESET 2014-2018

MIT License. Copyright (c) 2020 Strontic.