System.Management.Automation.dll
- File Path:
C:\Program Files (x86)\Reference Assemblies\Microsoft\WindowsPowerShell\3.0\System.Management.Automation.dll
Hashes
| Type | Hash |
|---|---|
| MD5 | 0CFFE4601B378CFA91BA6C7A47B4E1F8 |
| SHA1 | 25591ADBA1D9DF0954BA2552E105201F503CBB2A |
| SHA256 | D35F2882D5D8A03B7F1D8FB45EFF5D9E90EDF51FA17E8341662AE34F76ED0F62 |
| SHA384 | 7627D17C502ECE9ECD897E56D2761106B42FDD15AD26397CB569DD25318FD048201440E530F1ED6D6CC7812A23E48CFA |
| SHA512 | 3005B27CBBB569D9F2E52978BCDE48CCB1AB3BB08058D819668F5DD66F424ADA8366AC81F7D4916912C5984313A8298C883B731D9B24034962ED4461C36E72B9 |
| SSDEEP | 49152:7kbguysHT7+a5614K/RDvXcSGukSaxPGSkKH:7kc |
| IMP | DAE02F32A21E03CE65412F6E56942DAA |
| PESHA1 | FA98E53865C56803E33DBF1591C3CAF1CF469F9B |
| PE256 | A49E9D38D7F05F16846E1463C5E586CB0B15D6364CBE1B685C9F31BDACE10ADE |
Signature
- Status: Signature verified.
- Serial:
33000002CF6D2CC57CAA65A6D80000000002CF - Thumbprint:
1A221B3B4FEF088B17BA6704FD088DF192D9E0EF - Issuer: CN=Microsoft Code Signing PCA 2010, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
File Metadata
- Original Filename:
- Product Name:
- Company Name:
- File Version:
- Product Version:
- Language:
- Legal Copyright:
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: Unknown
Possible Misuse
The following table contains possible examples of System.Management.Automation.dll being misused. While System.Management.Automation.dll is not inherently malicious, its legitimate functionality can be abused for malicious purposes.
| Source | Source File | Example | License |
|---|---|---|---|
| sigma | image_load_in_memory_powershell.yml | - '\System.Management.Automation.Dll' |
DRL 1.0 |
MIT License. Copyright (c) 2020-2021 Strontic.