dvdplay.exe
- File Path:
C:\Windows\SysWOW64\dvdplay.exe - Description: dvdplay placeholder Application
Hashes
| Type | Hash |
|---|---|
| MD5 | D240F4F3C7AABA6F1F7D52A99FDF0F22 |
| SHA1 | 54FA660F636DFABA419271E0D62AE5671F143D94 |
| SHA256 | 28695005C5B4780B5258367964580AF6568AC187D0E8726EB1C70370AD042CB8 |
| SHA384 | 597D38E9501D93339EA2CFE64CFD96934B0C730FBD249356AAFBF3D2C8A81034351155CC579199BCFA842AC26552488D |
| SHA512 | 0B69B622C33D7769B9BE67A4A6AB2B30D0F28F4C55500CFD71F4D37042F25306C9A78FAB9C11DB2EE23DAA2A27AAD2F95ED2532E28675ECEC856E09C5C79F2C2 |
| SSDEEP | 192:5SbXs35rsq9oqtm/koPjhFiwWdZW2okh:0s35rsqum/ExWdZW2h |
| IMP | E039C46E30A89ABAF651718C922747B4 |
| PESHA1 | 22DA1C74D2EA395CE0E235E2959D577E32EB293F |
| PE256 | 8FC353D49DBB9656E67F7C2FCCA13BB984DAFFC6F6382936999A7E17587D5B38 |
Runtime Data
Child Processes:
wmplayer.exe
Loaded Modules:
| Path |
|---|
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\wow64.dll |
| C:\Windows\System32\wow64cpu.dll |
| C:\Windows\System32\wow64win.dll |
| C:\Windows\SysWOW64\dvdplay.exe |
Signature
- Status: Signature verified.
- Serial:
33000001C422B2F79B793DACB20000000001C4 - Thumbprint:
AE9C1AE54763822EEC42474983D8B635116C8452 - Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
File Metadata
- Original Filename: dvdplay
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.17763.1 (WinBuild.160101.0800)
- Product Version: 10.0.17763.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/70
- VirusTotal Link: https://www.virustotal.com/gui/file/28695005c5b4780b5258367964580af6568ac187d0e8726eb1c70370ad042cb8/detection/
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.