- File Path:
C:\WINDOWS\system32\Windows.Media.BackgroundPlayback.exe
- Description: Windows Media Playback EXE
Hashes
| Type |
Hash |
| MD5 |
90A195B35A31DC3A52750F8FCAEC57AD |
| SHA1 |
C4E5025D7742D38903CDD569BA13474A89A1D590 |
| SHA256 |
0DB5D80E7C80AC439B4DCEBA4F79FC37516CBCB74876F26B3BA63E1A37ED49BF |
| SHA384 |
2095E4DB35217DCAF6295E793725C086503864556438ECE4B09E1926E78B708011A61FDA05643F0CEABB0BD5ADBF0756 |
| SHA512 |
8691A9F72EEFF5559497DF9BC5E427E2AF27686E8E0F0E16C41EFC02FB550993BFB4FBAE65AC44A4BB1C7F88072A0BF263040E06668BB54A66F23EEE73CCA4F7 |
| SSDEEP |
192:NdtJrCL0aM+6CG9kCscKttV1859rSH9jtSvELjqOsJD1oEI04yncjzWt5W99:TrCL16CG9dNEV1YdSdFQb4FvWt5W9 |
| IMP |
C3C9FDD2C4E7A916F68D56CA0E8BAC30 |
| PESHA1 |
439C9FEC4FDD495BD75CF036C0855ED07B182545 |
| PE256 |
02FD74EF75B8739D7FBB05A418028059CBFAEEB973EE4B0056050B7414A15A51 |
Runtime Data
Child Processes:
Windows.Media.BackgroundPlayback.exe WerFault.exe
Loaded Modules:
| Path |
| C:\WINDOWS\System32\combase.dll |
| C:\WINDOWS\System32\KERNEL32.DLL |
| C:\WINDOWS\System32\KERNELBASE.dll |
| C:\WINDOWS\SYSTEM32\ntdll.dll |
| C:\WINDOWS\System32\RPCRT4.dll |
| C:\WINDOWS\System32\ucrtbase.dll |
| C:\WINDOWS\system32\Windows.Media.BackgroundPlayback.exe |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED
- Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: Windows.Media.Playback.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.22000.1 (WinBuild.160101.0800)
- Product Version: 10.0.22000.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/72
- VirusTotal Link: https://www.virustotal.com/gui/file/0db5d80e7c80ac439b4dceba4f79fc37516cbcb74876f26b3ba63e1a37ed49bf/detection
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.