Windows.StateRepositoryCore.dll
- File Path:
C:\Windows\system32\Windows.StateRepositoryCore.dll
- Description: Windows StateRepository API Core
Hashes
| Type |
Hash |
| MD5 |
ABC9D59F5165DB3E775AD1300EA9971C |
| SHA1 |
3B85A1E4198C3BCD7895ACB4D9CCF59CCB724C6B |
| SHA256 |
463BD1DCB68C44005895F915855A5AB73880E20A8C646155CDCF8DC0FDBDE087 |
| SHA384 |
321F18FDFD8B061CC9361DC1B2DC6CE22BB3EFEACB91063F369AF0F4AAF1D7E445A9DF4A219FEDAE08A883A158B23D08 |
| SHA512 |
133356EA6BEE008513680483FB7731303FC417B7FCD5EACDD92370C40B327A7320B20C91462ED55D8E7035F93D155E835719576D198031E7D0158BD10CECA24B |
| SSDEEP |
768:3ZzGnNupOI1Yxft7l8Xq7evntYAVH1wHQTHqe6RRpHo5h2r6wD1P1m:pzkwpORT7k1yOVwHQTHqe+RpHo5hIPk |
| IMP |
F91B654D0D97CAFD152655867501E522 |
| PESHA1 |
225F6D733DDE38FA92F6EB34FA93DE47E5705C97 |
| PE256 |
CA4371437A384FDBB8F367C759B9B11FBB024792DF154BCFF39CF4B822E89FD4 |
DLL Exports:
| Function Name |
Ordinal |
Type |
SRCacheContext_SetField_MultiString |
17 |
Exported Function |
SRCacheContext_SetField_String |
18 |
Exported Function |
SRCacheContext_SetField_UInt32 |
19 |
Exported Function |
SRCacheContext_OpenSubContext |
16 |
Exported Function |
SRCacheContext_HasSubKeys |
13 |
Exported Function |
SRCacheContext_IsEmpty |
14 |
Exported Function |
SRCacheContext_Open |
15 |
Exported Function |
SRCacheContext_SetField_UInt64 |
20 |
Exported Function |
SRCacheManager_Open |
25 |
Exported Function |
SRCacheManager_SetProperty_UInt32 |
26 |
Exported Function |
SRCacheManager_SetProperty_UInt64 |
27 |
Exported Function |
SRCacheManager_GetProperty_UInt64 |
24 |
Exported Function |
SRCacheManager_Close |
21 |
Exported Function |
SRCacheManager_DeleteContext |
22 |
Exported Function |
SRCacheManager_GetProperty_UInt32 |
23 |
Exported Function |
SRCacheContext_GetField_UInt64 |
12 |
Exported Function |
SRCacheContext_Close |
1 |
Exported Function |
SRCacheContext_Create |
2 |
Exported Function |
SRCacheContext_CreateSubContext |
3 |
Exported Function |
SRCache_GetDefaultAccountSid |
31 |
Exported Function |
SRCache_AllocStringBuffer |
28 |
Exported Function |
SRCache_DuplicateString |
29 |
Exported Function |
SRCache_Free |
30 |
Exported Function |
SRCacheContext_Delete |
4 |
Exported Function |
SRCacheContext_GetField_MultiString |
9 |
Exported Function |
SRCacheContext_GetField_String |
10 |
Exported Function |
SRCacheContext_GetField_UInt32 |
11 |
Exported Function |
SRCacheContext_EnumerateIndex |
8 |
Exported Function |
SRCacheContext_DeleteField |
5 |
Exported Function |
SRCacheContext_DeleteIfEmpty |
6 |
Exported Function |
SRCacheContext_EnumerateData |
7 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: Windows.StateRepositoryCore.dll
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.508 (WinBuild.160101.0800)
- Product Version: 10.0.19041.508
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/66
- VirusTotal Link: https://www.virustotal.com/gui/file/463bd1dcb68c44005895f915855a5ab73880e20a8c646155cdcf8dc0fdbde087/detection/
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.