adplusmanager.exe

File Path: C:\Program Files (x86)\Windows Kits\10\Debuggers\arm\adplusmanager.exe
Description:

Hashes

Type	Hash
MD5	`2AC2D4DD8DECA751E2E2374CF85752E1`
SHA1	`0F5BC17912BBD957063663C6411119F8DBFF82D9`
SHA256	`99DCDCD4BC0A47F376AF6956785236B199A23182876D5B0256251E539B6ECF55`
SHA384	`2020025F8E5F06B5B0A73FF27865AD3EDFCEDEB05FCE998AF0D892E677A5A212259BCCD8E7FD23E8C99F81703F22FC18`
SHA512	`B1652A4B4A54F6C13C32CA006588FA5E38A6468C5AB820FA337F008231313229336CE5F77BA174E7C97807A4D6AE578FD73F601D1B5B7FAB29D0EB3BB543F13A`
SSDEEP	`768:HZsFKlZ8Kc41WjT4TNegAuDk+rGbG/+B+OzUaGNUXh7mCq:RluaWgpRDkPbr+68OXh7U`
IMP	`F34D5F2D4577ED6D9CEEC516C1F5A744`
PESHA1	`C878A659AD27D0CD4C2AB4EEE7C05BEBE98BCF7E`
PE256	`90765E0C9F550CC5CDA5825751674A3EB6E9B30554F0653FF24375C45A0352B6`

Runtime Data

Child Processes:

Fondue.exe

Loaded Modules:

Path
C:\Program Files (x86)\Windows Kits\10\Debuggers\arm\adplusmanager.exe
C:\Windows\System32\ADVAPI32.dll
C:\Windows\System32\KERNEL32.dll
C:\Windows\System32\KERNELBASE.dll
C:\Windows\SYSTEM32\MSCOREE.DLL
C:\Windows\System32\msvcrt.dll
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\RPCRT4.dll
C:\Windows\System32\sechost.dll

Signature

Status: Signature verified.
Serial: 33000002B7E8E007A82AEF13150000000002B7
Thumbprint: 5A68625F1A516670A744F7EF919500A479D32A5B
Issuer: CN=Microsoft Code Signing PCA 2010, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows Kits Publisher, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: AdplusManager.exe
Product Name: Microsoft (R) Windows (R) Operating System
Company Name: Microsoft Corporation
File Version: 10.0.19041.1
Product Version: 10.0.19041.1
Language: Language Neutral
Legal Copyright: Copyright (c) Microsoft Corporation. All rights reserved.
Machine Type: 32-bit

File Scan

VirusTotal Detections: Unknown

File Similarity (ssdeep match)

File	Score
C:\Program Files (x86)\Windows Kits\10\Debuggers\arm64\adplusmanager.exe	82
C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\adplusmanager.exe	88
C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\adplusmanager.exe	88

MIT License. Copyright (c) 2020-2021 Strontic.