dabapi.dll

  • File Path: C:\Windows\SysWOW64\dabapi.dll
  • Description: Desktop Activity Broker API

Hashes

Type Hash
MD5 568092880CC5817EA1FC0B3D229FF1D1
SHA1 4410EB13F1C55D9C0798D59AD7AA2A33ACF61995
SHA256 471E02D89CEDEB0AFEC706BD456D2E5E5F3AFD6C2FE65B4FDBCF3F44E3BE3FF3
SHA384 C287598204B4998CAD38F41433F720F13153D656AF3BB4A2F289E96DAE04BC4496D72D70CF20DA40F8AAF15BA582B617
SHA512 7BAEF7F1189E0EEC5AC68F5EAB973CFBA8C06A05697C37AE105CD49A2D0440875E2AC71CBC1939FF3512693311A027D2D4AAE93AE048153AA656E8FE9B9776E1
SSDEEP 192:+y/Pf9ts1MwsYcOCL24je+ESfP6ZW++W:+y/dWlc5ReGfP6ZW++W
IMP 65D0958D2B24B8B91C4EAEEF959B4210
PESHA1 F75A17402190154A55C0E5723C37AAC83E5D3CC3
PE256 D8CEE88D31AC8659F7652E5DF81A417EC0DC07F2ABB49032941ACD4EA49AFE3F

DLL Exports:

Function Name Ordinal Type
DabRegisterTriggerConsumer 3 Exported Function
DabUnregisterTriggerConsumer 4 Exported Function
DabApiBufferFree 1 Exported Function
DabGetLastScheduledRunTime 2 Exported Function

Signature

  • Status: Signature verified.
  • Serial: 3300000266BD1580EFA75CD6D3000000000266
  • Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: dabapi.dll.mui
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.19041.1 (WinBuild.160101.0800)
  • Product Version: 10.0.19041.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/69
  • VirusTotal Link: https://www.virustotal.com/gui/file/471e02d89cedeb0afec706bd456d2e5e5f3afd6c2fe65b4fdbcf3f44e3be3ff3/detection/

MIT License. Copyright (c) 2020-2021 Strontic.