UevAgentPolicyGenerator.exe

  • File Path: C:\WINDOWS\system32\UevAgentPolicyGenerator.exe
  • Description:

Screenshot

UevAgentPolicyGenerator.exe

Hashes

Type Hash
MD5 D0FAE5B975B76D12F35EA91C6DFFD198
SHA1 8E50E649C45A2034B5F463A7A50526C447881F4D
SHA256 7538C2BF7A24DBE56C481A62FDF7713BEC9B6CC7BE99949501E895D0EE3273C9
SHA384 1E3D9C29876AFFA6CE60AF6C23F63F7DD2273E59D3142D5E453F4AEB8D99786C3827BD430583922485D7E9613E81CC77
SHA512 947A30E7E235069AB881A89FE8A3A660315A885D7BBAAC64782C8552570FC9870D53D3C4618DB049C7167D634C265EF1F35E14D128F8C69462CBFDB8BD233F18
SSDEEP 768:oiCwrYJHH8UAi1jDR2ZRB2VFk8vnjHn6tB5J:oiCw8F8UTtRKROvnutL
IMP F34D5F2D4577ED6D9CEEC516C1F5A744
PESHA1 10CA60CCFA5A1FF0177A7FD8FC1598B558568360
PE256 40130BD390A1E76C92BC0257F7573CF830F8E7FE2ED3BC9FCFEEC762ACB07198

Runtime Data

Child Processes:

conhost.exe

Window Title:

UevAgentPolicyGenerator.exe - This application could not be started.

Open Handles:

Path Type
(R-D) C:\Windows\Fonts\StaticCache.dat File
(R-D) C:\Windows\SysWOW64\en-US\user32.dll.mui File
(RW-) C:\Windows File
(RW-) C:\Windows\SysWOW64 File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.22000.1_none_6ec7c6847ea94424 File
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000001.db Section
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000001.db Section
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*cversions.2.ro Section
\Sessions\2\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 Section
\Sessions\2\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 Section
\Sessions\2\Windows\Theme1077709572 Section
\Windows\Theme3461253685 Section

Loaded Modules:

Path
C:\WINDOWS\SYSTEM32\ntdll.dll
C:\WINDOWS\system32\UevAgentPolicyGenerator.exe
C:\WINDOWS\System32\wow64.dll
C:\WINDOWS\System32\wow64base.dll
C:\WINDOWS\System32\wow64con.dll
C:\WINDOWS\System32\wow64cpu.dll
C:\WINDOWS\System32\wow64win.dll

Signature

  • Status: Signature verified.
  • Serial: 33000002ED2C45E4C145CF48440000000002ED
  • Thumbprint: 312860D2047EB81F8F58C29FF19ECDB4C634CF6A
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: UevAgentPolicyGenerator.exe
  • Product Name: Microsoft (R) Windows (R) Operating System
  • Company Name: Microsoft Corporation
  • File Version: 0.0.0.0
  • Product Version: 0.0.0.0
  • Language: Language Neutral
  • Legal Copyright: Copyright (c) Microsoft Corporation. All rights reserved.
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/73
  • VirusTotal Link: https://www.virustotal.com/gui/file/7538c2bf7a24dbe56c481a62fdf7713bec9b6cc7be99949501e895d0ee3273c9/detection

File Similarity (ssdeep match)

File Score
C:\Windows\system32\UevAgentPolicyGenerator.exe 52
C:\Windows\system32\UevAgentPolicyGenerator.exe 54
C:\Windows\system32\UevAgentPolicyGenerator.exe 54
C:\WINDOWS\system32\UevAgentPolicyGenerator.exe 54

MIT License. Copyright (c) 2020-2021 Strontic.