fhmanagew.exe
- File Path:
C:\WINDOWS\system32\fhmanagew.exe
- Description: File History Management Tool
Hashes
| Type |
Hash |
| MD5 |
E576A1D2240C9E47D44978DAF25C048D |
| SHA1 |
A544352D98F8F076FAE0F10F3C0BDC231089A832 |
| SHA256 |
427EBBC7E031C75EBF99312C6632F1EB5BB320FDE19109571E561CE8E667C83B |
| SHA384 |
C4CDE5C932F5DAC3D614540D655153ABCC884C1EAE706DBCE76BBFA58D72902D5641B8A2B26698AD57818E5B886FFED3 |
| SHA512 |
70E8BF931B876752FD639783614118BF1DB6A5FBB9913C2B2DD4780DA7687356CB4BE61F08C0C0B40DC6D03FAA1BE145E883686FFD900C70DB0807EC0F30F272 |
| SSDEEP |
1536:fCQKm2eVT5wP48qJDMpBjNpXm+bzpUFweKSTQrY3rJntm1rliS4248uz08Q0Me8J:WzoVwA8qpMHjNRzpkVTFJcMuneHI |
| IMP |
E7F44E30C8881C871B11222B9D0BD4C7 |
| PESHA1 |
8B9C48CF69CEEB2C3D4A0B74932F9382B1B2979A |
| PE256 |
1956A7D8B24E598A482FAC016BBD6E5A156567A13BC56E3364ABB5098EA0D73B |
Runtime Data
Loaded Modules:
| Path |
| C:\WINDOWS\System32\ADVAPI32.dll |
| C:\WINDOWS\system32\fhmanagew.exe |
| C:\WINDOWS\System32\KERNEL32.DLL |
| C:\WINDOWS\System32\KERNELBASE.dll |
| C:\WINDOWS\System32\msvcrt.dll |
| C:\WINDOWS\SYSTEM32\ntdll.dll |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED
- Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: fhmanagew.exe.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.22000.1 (WinBuild.160101.0800)
- Product Version: 10.0.22000.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/73
- VirusTotal Link: https://www.virustotal.com/gui/file/427ebbc7e031c75ebf99312c6632f1eb5bb320fde19109571e561ce8e667c83b/detection
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.