kdhvcom.dll
- File Path:
C:\Windows\system32\kdhvcom.dll
- Description: Enlightened Kernel Serial Debugger Extension DLL
Hashes
| Type |
Hash |
| MD5 |
A4FAD08A4DDE0DEAE2062FAFF9DFE500 |
| SHA1 |
53E7997E73FDE383731DD7D605F422B29FB781B2 |
| SHA256 |
E8C0D34EC131B3D71D9F297DED8FFC9091AD57FB0AFBE3B37F51C0E7938748FA |
| SHA384 |
8FF745E5E5B4452518BD2D5F21B04113A0B70B7138D8E9CF600CB9E07CB9101C80C6E3B889C9A18D53BE5DE24FAF3A0A |
| SHA512 |
18DD7AB2ED7E6516D25E175BE700F77FB620452E01FEED4A8FDD19126B308E1C5024E5C7B322A14B0C08D88C4E7B7428EC8FEE38FAF39A9FBBBC99936AAEE2FC |
| SSDEEP |
384:9NNSAfo2yssgl5MX+WUhWVf8hDBRJwJXlGsgs/1:9zvfonsswTh1P2E/a |
| IMP |
3083B8A7DAC7B2DDCF253014862BDFA3 |
| PESHA1 |
8A2FEAA40180BBBD10A367460650C33D358EFAB3 |
| PE256 |
E74DCA96E1B4958995F5A27770D8A87D3647AFA282B3128C232083F295262B18 |
DLL Exports:
| Function Name |
Ordinal |
Type |
KdSendPacket |
4 |
Exported Function |
KdSetHiberRange |
5 |
Exported Function |
KdReceivePacket |
3 |
Exported Function |
KdInitialize |
1 |
Exported Function |
KdPower |
2 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: kdhvcom.dll
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.508 (WinBuild.160101.0800)
- Product Version: 10.0.19041.508
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/67
- VirusTotal Link: https://www.virustotal.com/gui/file/e8c0d34ec131b3d71d9f297ded8ffc9091ad57fb0afbe3b37f51c0e7938748fa/detection/
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.