els.dll
- File Path:
C:\Windows\system32\els.dll
- Description: Event Viewer Snapin
Hashes
| Type |
Hash |
| MD5 |
C785EE2338AA1AEA192DF78C3A3B3C78 |
| SHA1 |
9538D4ABE2469E94BFC895E76B70DD7BC00A3EB9 |
| SHA256 |
A274F7EA59B7E448B0F9139256A0A9E3C5E7EBE52663079F37AD7EDE862B33DA |
| SHA384 |
E2AEE199C7D97971E9D1074A03682AE5EB1F0EF2E5CEDA5FB1D1EB884EE041E80B84761DE0725C5255AAFBC21841F3CA |
| SHA512 |
2BCC4109BA79D577EB5735A07F36149E4089A7880CADB22C7BAB2B8CBC2E56770716FAB26C5F032748B7EE3E9E7B5A666D7E140E6E2DC142B3A04B9980F68030 |
| SSDEEP |
3072:3hh+sI3E1dE9Hg45k9XJ4/2FTRWKWDZklEIJ0RXV9JT+Ou41Qgr0eP5j:37zWUSywkpBRW3DyWX7JTL1IeP5 |
| IMP |
A26A8976F1EB6D8517D153FF05635A24 |
| PESHA1 |
C84A7AB6FF7089FEDBF17F8860D407A0FDD25929 |
| PE256 |
F1D435971FD68427F40F5429D313416745B26F261ADEDF70A6A37BEF31B25ACA |
DLL Exports:
| Function Name |
Ordinal |
Type |
DllRegisterServer |
3 |
Exported Function |
DllUnregisterServer |
4 |
Exported Function |
DllCanUnloadNow |
1 |
Exported Function |
DllGetClassObject |
2 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
330000026551AE1BBD005CBFBD000000000265
- Thumbprint:
E168609353F30FF2373157B4EB8CD519D07A2BFF
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: ELS.DLL.MUI
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/72
- VirusTotal Link: https://www.virustotal.com/gui/file/a274f7ea59b7e448b0f9139256a0a9e3c5e7ebe52663079f37ad7ede862b33da/detection/
MIT License. Copyright (c) 2020-2021 Strontic.