WdacWmiProv.dll
- File Path:
C:\Windows\SysWOW64\wbem\WdacWmiProv.dll
- Description: WDAC WMI Providers
Hashes
| Type |
Hash |
| MD5 |
3607D9ADAEBFF2C4CB0A7A5E7902EF0D |
| SHA1 |
1659642C998B3FC5BC9C3497B3764F241143F678 |
| SHA256 |
CC4EA3AE8946AAF3222C7CB0BBA782809E376B19204627F52AF095D360458738 |
| SHA384 |
E166CB602B61E4DBE45905CBA59A5439C58E2EB5A7846033A671719CBF088AE0B29399CB556CA9BEDA5EC43DEF8A594D |
| SHA512 |
CD48608A0D4C3EC5CD3E6BCB3D2E5FCE050E4EC1591A116063C1605DEBF71FF17BFA0F44E31F0775CC21F61A4C7432DF0512CC23878852F77B21C0D12AA52CA4 |
| SSDEEP |
1536:KsrsDEPFBFS5/3ToxkLoxwNY7AvyJQV/HksYCr97D5KnLOUwvu:xkQBFStsxkE97myJRsYCr97wLOUf |
| IMP |
93804FC22273D96E77F247DABB4EC652 |
| PESHA1 |
97CE0A2699C7BFDD23669C336F73BDC422B440DD |
| PE256 |
FCFF73851EDBEE0468D9434319CDE23B94A312C061083A3EE0E1FBF4CDA9A7F6 |
DLL Exports:
| Function Name |
Ordinal |
Type |
DllUnregisterServer |
5 |
Exported Function |
GetProviderClassID |
6 |
Exported Function |
MI_Main |
7 |
Exported Function |
DllRegisterServer |
4 |
Exported Function |
DllCanUnloadNow |
1 |
Exported Function |
DllGetClassObject |
2 |
Exported Function |
DllMain |
3 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: WdacWmiProv.dll.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: Language Neutral
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/69
- VirusTotal Link: https://www.virustotal.com/gui/file/cc4ea3ae8946aaf3222c7cb0bba782809e376b19204627f52af095d360458738/detection/
MIT License. Copyright (c) 2020-2021 Strontic.