icsvc.dll

File Path: C:\Windows\system32\icsvc.dll
Description: Virtual Machine Integration Component Service

Hashes

Type	Hash
MD5	`4AC126571E4DFAE5299F7D2F636E4B7A`
SHA1	`7D640434A23B709DCC8432240C0CE1C8F69ADB18`
SHA256	`1094E4A812B799E401D57AF240EB0E68B3A2978FD2229A93491C1D69942ADF6A`
SHA384	`CBED84C927DC3E37C69D4028C332E7E03D6BE42734F2E75FEA2F4E11276CA727FE4C5C2B0D00A53416027612FD0611E2`
SHA512	`BD0EAE5A1A49D5CC3414E387A59F870D57B25F55B2914EA8C1AA7A3B9C0C56DAFC0093FA6B03FBD58847B046AD4E76D67851DD3139ABA8BBE2F3914C9D15183D`
SSDEEP	`6144:hikZNbJh9NWX9dSwSkMEQ1obYhOIyPSulKYhcSe5fqY:BJtWtc5HHOIyPd8Y6t5fqY`
IMP	`8631163454386C9A60A7D09C2401CAC6`
PESHA1	`9782B64B636EDDD7699868E06B88DA840C89051E`
PE256	`FFF124582D27AC3F3CF3B88AD8A9A0940C0438ADED6C7D6A4302221724C9F93C`

DLL Exports:

Function Name	Ordinal	Type
`ShutdownServiceMain`	6	Exported Function
`KvpexchangeServiceMain`	5	Exported Function
`VMSessionServiceMain`	8	Exported Function
`TimesyncServiceMain`	7	Exported Function
`DllUnregisterServer`	2	Exported Function
`DllRegisterServer`	1	Exported Function
`HeartbeatServiceMain`	4	Exported Function
`GuestInterfaceServiceMain`	3	Exported Function

Signature

Status: Signature verified.
Serial: 3300000266BD1580EFA75CD6D3000000000266
Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: icsvc.dll.mui
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 10.0.19041.1 (WinBuild.160101.0800)
Product Version: 10.0.19041.1
Language: English (United States)
Legal Copyright: Microsoft Corporation. All rights reserved.
Machine Type: 64-bit

File Scan

VirusTotal Detections: 0/66
VirusTotal Link: https://www.virustotal.com/gui/file/1094e4a812b799e401d57af240eb0e68b3a2978fd2229a93491c1d69942adf6a/detection/

MIT License. Copyright (c) 2020-2021 Strontic.