kdnet.dll

  • File Path: C:\Windows\system32\kdnet.dll
  • Description: Network Kernel Debugger

Hashes

Type Hash
MD5 56E19A9285FE147D12163811A8EE9553
SHA1 4A8E55412B7944B5007969D61F3197C0A720DBA3
SHA256 5AA25ED2645E798E1D3F02BBD420C4F3CE811208CC62BDC41F4D630F9C475CB0
SHA384 4FA27DACCAEE03BF98371F99D17E8DEA64F2155D66871D8C9F336C4894D6854B530FBA51CF4CB6E291DBE23B89D87390
SHA512 5914B8C700672BBF8411B21305808FC2B47AFB081B4EF2F08A313B28618162165B48A9D4BFFB58C6254DBAFF0A92FEDAF77C0D78264DC718F35C29D87A00F730
SSDEEP 3072:GmAmi7SjWmQ1uSoGMkMUq7X/oOMqqDZRvego:Emi7SqmC3AolqqDPa
IMP 4A03F075CF5903EA85C9F519D983A997
PESHA1 A74C52B8FCC111B56F330AFAE9ABFFF60E12EE3C
PE256 BD188B56CE034A3D9005BE0F7CEF2A831EF600416DCA724E4E2C69BB489F1A62

DLL Exports:

Function Name Ordinal Type
KdSendPacket 4 Exported Function
KdSetHiberRange 5 Exported Function
KdReceivePacket 3 Exported Function
KdInitialize 1 Exported Function
KdPower 2 Exported Function

Signature

  • Status: Signature verified.
  • Serial: 3300000266BD1580EFA75CD6D3000000000266
  • Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: kdnet.dll
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.19041.1 (WinBuild.160101.0800)
  • Product Version: 10.0.19041.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: 0/72
  • VirusTotal Link: https://www.virustotal.com/gui/file/5aa25ed2645e798e1d3f02bbd420c4f3ce811208cc62bdc41f4d630f9c475cb0/detection/

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\Windows Kits\10\Debuggers\arm\kdsrv.exe 35
C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\kdsrv.exe 25
C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\kdsrv.exe 25

MIT License. Copyright (c) 2020-2021 Strontic.