appidtel.exe

File Path: C:\Windows\system32\appidtel.exe
Description: Initializes Appid ManagedInstaller and Smartscreen Telemetry

Hashes

Type	Hash
MD5	`06AE345F8841C597C25C73DBA1A132F3`
SHA1	`395580D657EDBB876D1894B1E339D0B68524D978`
SHA256	`30D867E5B3BFED0223AF5D178DCE1CF48BDBA3D83E6808411650CFAC05EE00D4`
SHA384	`069A4C552C62E4CDD2494D6608E3E1B520FD297F3728AE6073AC225CBFA2EC47FC82CFCEB182B9AA951A3D868405999A`
SHA512	`F8FCAB229DB469A834E0006278BC6512ABFBEAAD66F2C352C71B566AF5C88234717CB11C5C97DA65F31E746AD6DE089A7F0DC609A772B0A020A62015C3BC70A6`
SSDEEP	`384:60+WZ9RorV3A8gj/e6W813lOdoocBl2R5+vV8HpS+WsdsWyvk:64963A8L/GOdoPl05+d8Hk83`
IMP	`85042296267FAC79E897C8302E744A31`
PESHA1	`7BEA4655781BB2D6245082D0DB28257DBC03DDC9`
PE256	`52DD35DA9F1DF680FA8FB2E63953E7A58315EA213639AE51F5ACE97B2AF7E588`

Runtime Data

Loaded Modules:

Path
C:\Windows\system32\appidtel.exe
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\SYSTEM32\ntdll.dll

Signature

Status: Signature verified.
Serial: 3300000266BD1580EFA75CD6D3000000000266
Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: APPIDTEL.EXE
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 1.00 (WinBuild.160101.0800)
Product Version: 10.0.19041.488
Language: English (United States)
Legal Copyright: Microsoft Corporation. All rights reserved.
Machine Type: 64-bit

File Scan

VirusTotal Detections: 0/68
VirusTotal Link: https://www.virustotal.com/gui/file/30d867e5b3bfed0223af5d178dce1cf48bdba3d83e6808411650cfac05ee00d4/detection/

File Similarity (ssdeep match)

File	Score
C:\Windows\system32\appidtel.exe	65
C:\Windows\system32\appidtel.exe	91
C:\Windows\system32\appidtel.exe	66

MIT License. Copyright (c) 2020-2021 Strontic.