WaaSMedicAgent.exe

  • File Path: C:\Windows\system32\WaaSMedicAgent.exe
  • Description: WaasMedic Agent Exe

Hashes

Type Hash
MD5 9FFE5A2D772BC2EF8090339286838086
SHA1 A149037DF9BC8C3E3658B81154934AE4344A5BC1
SHA256 C25AB34D03892CA1D96562BAC72C2A49BCE5CB1468C104AA59CF8603A7037D25
SHA384 74965B46E9AA4A72A9FE7BD732F090CBF0798C8DF14D1D6E6E915593F326487D8FFD1003E7215FE4F5986FFF2E2C2A16
SHA512 0B151606A29EB1C31421BB9C5BDC6B871390D38E0662EE92A80DFCD5D822EF634D58BBCE85AC5D86ECB612E594E277C909C66A626105671E17104488EF3C9988
SSDEEP 1536:gYqyRPTu9Om35c26ToYuVwcQ47t7Gtqbm54fg4B1MMEatm5Q1SSjS5H8Nxd:gcJyQkbx7GCbfg4B1M1UDrjS5c9
IMP 56EC755D1DB43659CE880C239FDFA1D8
PESHA1 954F6BC1B17C0FEAA1A9FC5CA040199171035184
PE256 F368A2655BF3CA3BE9BD908B0EA1A862101337B4641EAC07AA4CDA246A0DB30F

Runtime Data

Loaded Modules:

Path
C:\Windows\System32\bcrypt.dll
C:\Windows\System32\bcryptPrimitives.dll
C:\Windows\System32\combase.dll
C:\Windows\System32\CRYPT32.dll
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\System32\MSASN1.dll
C:\Windows\System32\msvcrt.dll
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\RPCRT4.dll
C:\Windows\System32\sechost.dll
C:\Windows\System32\ucrtbase.dll
C:\Windows\system32\WaaSMedicAgent.exe
C:\Windows\System32\WINTRUST.dll

Signature

  • Status: Signature verified.
  • Serial: 3300000266BD1580EFA75CD6D3000000000266
  • Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: WaasMedicAgent.exe
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.17763.802 (WinBuild.160101.0800)
  • Product Version: 10.0.17763.802
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: 0/70
  • VirusTotal Link: https://www.virustotal.com/gui/file/c25ab34d03892ca1d96562bac72c2a49bce5cb1468c104aa59cf8603a7037d25/detection/

MIT License. Copyright (c) 2020-2021 Strontic.