dvdplay.exe
- File Path:
C:\WINDOWS\system32\dvdplay.exe - Description: dvdplay placeholder Application
Hashes
| Type | Hash |
|---|---|
| MD5 | EDDBF194DFED0A9C0E4916B2A3F54817 |
| SHA1 | B6091CAC60034688C58C9AA70CADF0A5E8A77D14 |
| SHA256 | 5A1BBDBEE526610FF0547676BD54EB8DE559AC7554B5C211EF3A2371B2A1FAF3 |
| SHA384 | 6D87BB411BB8215C808FC7418128980A8A29D83C056A688D3C681AC9269FCFA3D289706DA6C6991AC08CF21AA690D007 |
| SHA512 | 869DCA8C10B686F63382F7192336C09E17FB29FF86384849C0BEA62E7C032FC34F50DD167F45307C95C07DC86D02D3A884BD8A3156D7503FF7B1A0919EC0866D |
| SSDEEP | 192:vOMZCPTJAUXbZ07SCH9rXrVUmQPjhFiAWpZW:vOMEAUXV0BZ8RWpZW |
| IMP | 3CB4A4CDEB02E4C28FD0C394B4CD7597 |
| PESHA1 | 12B916CA5A96752C42790314BC903FAA04860E86 |
| PE256 | 672570DF1DD717A325954926E653EAD0DF5EACAFDF2543927BE8D13B6914C5FC |
Runtime Data
Child Processes:
wmplayer.exe
Loaded Modules:
| Path |
|---|
| C:\WINDOWS\System32\ADVAPI32.dll |
| C:\WINDOWS\system32\dvdplay.exe |
| C:\WINDOWS\System32\KERNEL32.DLL |
| C:\WINDOWS\System32\KERNELBASE.dll |
| C:\WINDOWS\SYSTEM32\ntdll.dll |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED - Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A - Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
File Metadata
- Original Filename: dvdplay
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.22000.1 (WinBuild.160101.0800)
- Product Version: 10.0.22000.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/74
- VirusTotal Link: https://www.virustotal.com/gui/file/5a1bbdbee526610ff0547676bd54eb8de559ac7554b5c211ef3a2371b2a1faf3/detection
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.