apisampling.dll
- File Path:
C:\Windows\system32\apisampling.dll
- Description: API Sampling
Hashes
| Type |
Hash |
| MD5 |
534306BA14F7F2910FFB989BAA25D56D |
| SHA1 |
70AD6555C19E720D7DC8827C2E05A0BC90BF8AE6 |
| SHA256 |
B31C427DE17A586D9ED4E54BACAF66D3FB22CBC4B271157FE1ADC7D6871E6807 |
| SHA384 |
313AA5DB50E66DB10272DDC15C85ACE4D76C0713E2580F060C78EAA618BE1E35A0EF1E08ABE26886C9E062A7FC8B416E |
| SHA512 |
F8C9293E65327BA203A124C6686E8DE71D54E2B96AA1A7475EF07311D6713A2D2449AD2793C70B07D9919DE37656B9926E32F5586B8B732EA4C1AF6716657229 |
| SSDEEP |
6144:FNplMyku/5YwceETiE8FkgH48JZb8rVNwy7GvuI2ZQxjuZ:fku/zc7TiE8FxLbb8rYy7GmI2ipuZ |
| IMP |
2DC1A6DF05415968F8146C620762E290 |
| PESHA1 |
52C4B86E2C17CFA7368F54356ECEC9019C9103C6 |
| PE256 |
A6A6233AEC4D5C876BC59334C30126B0FA3E3A9DAADDE210831F30E14C9F5E21 |
DLL Exports:
| Function Name |
Ordinal |
Type |
APISamplingUninitialize |
3 |
Exported Function |
APISamplingSetValue |
2 |
Exported Function |
APISamplingInitialize |
1 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: APISampling
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/71
- VirusTotal Link: https://www.virustotal.com/gui/file/b31c427de17a586d9ed4e54bacaf66d3fb22cbc4b271157fe1adc7d6871e6807/detection/
MIT License. Copyright (c) 2020-2021 Strontic.