hvsievaluator.exe
- File Path:
C:\Windows\system32\hvsievaluator.exe
- Description: Microsoft Defender Application Guard Policy Evaluator
Hashes
| Type |
Hash |
| MD5 |
03E07DC876AD7A3462CC334FEA68A144 |
| SHA1 |
09AE191C760E27A19D7003492460FA343420905A |
| SHA256 |
1524376DE0CF0DDD81E1D2596E4F7FC303016C7773B577EF8BA8C50C11CB50A2 |
| SHA384 |
808F3494A604095F466FC323178F20E0C21A4D2B90BA4A528261D1F155D704AB7738DA2A0F866E7F995B147F13A8ECA4 |
| SHA512 |
04CFD20E1AD11C9D1FD95D9E83718A73FBB3BD0106641078FFA17BFCA66EA7B820A4D7E70ED0D1260518BECE7CB90163BC24AF88DC54104B5801BDF8AAEE19B7 |
| SSDEEP |
3072:xC7MPsDfE62taO/3USL4QCt2fUN9una4UvkieOiOlk4WNFH:44wCdfUSLTCt2fUKlAKOlkh |
Runtime Data
Loaded Modules:
| Path |
| C:\Windows\system32\hvsievaluator.exe |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: HvsiEvaluator.exe.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.