api-ms-win-core-file-l1-1-0.dll

File Path: C:\Program Files (x86)\Cisco Systems\Cisco Jabber\x64\api-ms-win-core-file-l1-1-0.dll
Description: ApiSet Stub DLL

Hashes

Type	Hash
MD5	`A219743F60536E65530D20FBD292B465`
SHA1	`A07D2B2DCB25B8CBFE7AE97A07C4A118CC43D242`
SHA256	`D8EB8A7B668508CD6042FB86CE602B09BC58FD557D16CBE32775D851F3E2A550`
SHA384	`B24D72BC14D10831F1FBFF04EF43FDD43D7856D1B40A789C1DBDD15FB584F3D8A9755719B97186F74B75B41096B770EF`
SHA512	`48EFB29EA04EDE8FAA94022D90A14890F335A935D4542521140A079A7EAB5A345DA5D7FDE6026C6B2FE317530AD6E65FE93E8F2FF3C2866991C0F2C3A525098D`
SSDEEP	`384:RTPvVXnWlhW6yAA0GftpBj0lk8g62lTIw3Rr5E:FPvVXStiyy8g9R2`
PESHA1	`FA2750143017F50EDB992B363B727D7B407FD5E9`
PE256	`DC9ABF85CE41A9D8832C3139822CDE6152C1EE8D57CED17ABF1EB7164063E05B`

DLL Exports:

Function Name	Ordinal	Type
`GetTempFileNameW`	50	Exported Function
`GetVolumeInformationByHandleW`	51	Exported Function
`GetLongPathNameW`	48	Exported Function
`GetShortPathNameW`	49	Exported Function
`GetVolumeInformationW`	52	Exported Function
`LockFile`	55	Exported Function
`LockFileEx`	56	Exported Function
`GetVolumePathNameW`	53	Exported Function
`LocalFileTimeToFileTime`	54	Exported Function
`GetFinalPathNameByHandleA`	41	Exported Function
`GetFinalPathNameByHandleW`	42	Exported Function
`GetFileTime`	39	Exported Function
`GetFileType`	40	Exported Function
`GetFullPathNameA`	43	Exported Function
`GetLogicalDriveStringsW`	45	Exported Function
`GetLongPathNameA`	47	Exported Function
`GetFullPathNameW`	44	Exported Function
`GetLogicalDrives`	46	Exported Function
`QueryDosDeviceW`	57	Exported Function
`SetFileTime`	69	Exported Function
`SetFileValidData`	70	Exported Function
`SetFilePointer`	67	Exported Function
`SetFilePointerEx`	68	Exported Function
`UnlockFile`	71	Exported Function
`WriteFileEx`	74	Exported Function
`WriteFileGather`	75	Exported Function
`UnlockFileEx`	72	Exported Function
`WriteFile`	73	Exported Function
`ReadFileScatter`	60	Exported Function
`RemoveDirectoryA`	61	Exported Function
`ReadFile`	58	Exported Function
`ReadFileEx`	59	Exported Function
`RemoveDirectoryW`	62	Exported Function
`SetFileAttributesW`	65	Exported Function
`SetFileInformationByHandle`	66	Exported Function
`SetEndOfFile`	63	Exported Function
`SetFileAttributesA`	64	Exported Function
`GetFileSizeEx`	38	Exported Function
`FindCloseChangeNotification`	12	Exported Function
`FindFirstChangeNotificationA`	13	Exported Function
`FileTimeToLocalFileTime`	10	Exported Function
`FindClose`	11	Exported Function
`FindFirstChangeNotificationW`	14	Exported Function
`FindFirstFileExW`	17	Exported Function
`FindFirstFileW`	18	Exported Function
`FindFirstFileA`	15	Exported Function
`FindFirstFileExA`	16	Exported Function
`CreateDirectoryW`	3	Exported Function
`CreateFileA`	4	Exported Function
`CompareFileTime`	1	Exported Function
`CreateDirectoryA`	2	Exported Function
`CreateFileW`	5	Exported Function
`DeleteFileW`	8	Exported Function
`DeleteVolumeMountPointW`	9	Exported Function
`DefineDosDeviceW`	6	Exported Function
`DeleteFileA`	7	Exported Function
`FindFirstVolumeW`	19	Exported Function
`GetDriveTypeW`	31	Exported Function
`GetFileAttributesA`	32	Exported Function
`GetDiskFreeSpaceW`	29	Exported Function
`GetDriveTypeA`	30	Exported Function
`GetFileAttributesExA`	33	Exported Function
`GetFileInformationByHandle`	36	Exported Function
`GetFileSize`	37	Exported Function
`GetFileAttributesExW`	34	Exported Function
`GetFileAttributesW`	35	Exported Function
`FindNextFileW`	22	Exported Function
`FindNextVolumeW`	23	Exported Function
`FindNextChangeNotification`	20	Exported Function
`FindNextFileA`	21	Exported Function
`FindVolumeClose`	24	Exported Function
`GetDiskFreeSpaceExA`	27	Exported Function
`GetDiskFreeSpaceExW`	28	Exported Function
`FlushFileBuffers`	25	Exported Function
`GetDiskFreeSpaceA`	26	Exported Function

Signature

Status: Signature verified.
Serial: 330000010A2C79AED7797BA6AC00010000010A
Thumbprint: 3BDA323E552DB1FDE5F4FBEE75D6D5B2B187EEDC
Issuer: CN=Microsoft Code Signing PCA, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Corporation, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: apisetstub
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 10.0.14393.33 (rs1_release_sec.160727-1952)
Product Version: 10.0.14393.33
Language: English (United States)
Machine Type: 64-bit

File Scan

VirusTotal Detections: 0/66
VirusTotal Link: https://www.virustotal.com/gui/file/d8eb8a7b668508cd6042fb86ce602b09bc58fd557d16cbe32775d851f3e2a550/detection/

File Similarity (ssdeep match)

File	Score
C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\agcp.exe	35
C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework.NETFramework\v4.8\Microsoft.VisualC.dll	33
C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\x64\Microsoft.Azure.KeyVault.Core.dll	35
C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\x64\Microsoft.WindowsAzure.Configuration.dll	30
C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\x86\Microsoft.Azure.KeyVault.Core.dll	35
C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\x86\Microsoft.WindowsAzure.Configuration.dll	30
C:\Program Files\Microsoft Silverlight\5.1.50918.0\agcp.exe	36
C:\WINDOWS\system32\microsoft.windows.softwarelogo.showdesktop.exe	35
C:\Windows\system32\mrt_map.dll	27
C:\Windows\system32\mrt100.dll	30
C:\WINDOWS\system32\TsWpfWrp.exe	33
C:\Windows\system32\TsWpfWrp.exe	32
C:\Windows\SysWOW64\mrt_map.dll	25
C:\Windows\SysWOW64\mrt100.dll	29
C:\WINDOWS\SysWOW64\TsWpfWrp.exe	36
C:\Windows\SysWOW64\TsWpfWrp.exe	30