appidtel.exe

File Path: C:\Windows\system32\appidtel.exe
Description: Initializes Appid ManagedInstaller and Smartscreen Telemetry

Hashes

Type	Hash
MD5	`6141E25885E56AB4DF9EE96400892C73`
SHA1	`65D33D405613A9AFE9FD15449803ECE011414BBB`
SHA256	`A5D3BB75D551B3465B11067C2564FAA6B54355D1F8D129AAC2E61580D7BB90D6`
SHA384	`86C727F0A3FAFB76E7B61862083D11F0562E5DC04175925395A51D99F3C2B5224BA340B37373E18463CD45AD5DE5F67F`
SHA512	`CF4A4835D27D4DDA01167E956C39740B41DE3845BE14112711D3E17D247C15027704B60DFBEAB32B05CC3C7F9320D31114D75E0A8D071929080DFA458397C0AC`
SSDEEP	`384:68+WpdRobF3A8wjfe6W813lOdo1IO4el2R5mjOQV8VplZcWsdsWav:6gd63A8b/GOdoPhl05mis8Vjw`
IMP	`85042296267FAC79E897C8302E744A31`
PESHA1	`38879C4CCCB24E19556A9B0468D4B239738FB442`
PE256	`7BDCA362EB65729CC51BB0D7A303B368EDC1931788347F375410618D65AE9E75`

Runtime Data

Loaded Modules:

Path
C:\Windows\system32\appidtel.exe
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\SYSTEM32\ntdll.dll

Signature

Status: Signature verified.
Serial: 33000002EC6579AD1E670890130000000002EC
Thumbprint: F7C2F2C96A328C13CDA8CDB57B715BDEA2CBD1D9
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: APPIDTEL.EXE
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 1.00 (WinBuild.160101.0800)
Product Version: 10.0.19041.1202
Language: English (United States)
Legal Copyright: Microsoft Corporation. All rights reserved.
Machine Type: 64-bit

File Scan

VirusTotal Detections: 0/73
VirusTotal Link: https://www.virustotal.com/gui/file/a5d3bb75d551b3465b11067c2564faa6b54355d1f8d129aac2e61580d7bb90d6/detection

File Similarity (ssdeep match)

File	Score
C:\Windows\system32\appidtel.exe	65
C:\Windows\system32\appidtel.exe	65
C:\Windows\system32\appidtel.exe	90

MIT License. Copyright (c) 2020-2021 Strontic.