appidtel.exe

File Path: C:\Windows\system32\appidtel.exe
Description: Initializes Appid ManagedInstaller and Smartscreen Telemetry

Hashes

Type	Hash
MD5	`A54179DCCD31B6F6D23DF8DA147F4748`
SHA1	`69CDD81FE5EE8EE25A90C2455CD7879D8660A668`
SHA256	`902F327BFF5A5F4B2333F5AE28F843A1AC705BC0E04B4B37CEE3D9158F8F017C`
SHA384	`C186C1FD3248AED67F885A2B8E61B94A9BEB9432FCEE46DA2AC5CB65AC933041320C9634DC07A35D8BD523D36AFF521E`
SHA512	`C4FF89C249CD96BF80814076E240FAB76E2F067FA5AC440FB6E781FC02D3DACABA59D799B7BEAE87D36674D0038E15D299A80D52134817144C74ECB0D155B5B8`
SSDEEP	`384:6f+WpdRobF3A8wjfe6W813lOdo1IO4el2R5WjOQV8HpJZsWsdsWdv:6Hd63A8b/GOdoPhl05Wis8H/A`
IMP	`85042296267FAC79E897C8302E744A31`
PESHA1	`9FE65F9FE2CE1C2D6707455B8CCE38667BF3BB68`
PE256	`8B59140CA6B7D5A8A51CB5A6EDD3FF6FFDC71F46879FB5C1A4ADB7DBDEA86A52`

Runtime Data

Loaded Modules:

Path
C:\Windows\system32\appidtel.exe
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\SYSTEM32\ntdll.dll

Signature

Status: Signature verified.
Serial: 3300000266BD1580EFA75CD6D3000000000266
Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: APPIDTEL.EXE
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 1.00 (WinBuild.160101.0800)
Product Version: 10.0.19041.546
Language: English (United States)
Legal Copyright: Microsoft Corporation. All rights reserved.
Machine Type: 64-bit

File Scan

VirusTotal Detections: 0/75
VirusTotal Link: https://www.virustotal.com/gui/file/902f327bff5a5f4b2333f5ae28f843a1ac705bc0e04b4b37cee3d9158f8f017c/detection

File Similarity (ssdeep match)

File	Score
C:\Windows\system32\appidtel.exe	66
C:\Windows\system32\appidtel.exe	90
C:\Windows\system32\appidtel.exe	65

MIT License. Copyright (c) 2020-2021 Strontic.