kdsrv.exe
- File Path:
C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\kdsrv.exe
- Description: Microsoft Kernel Debugger Connection Server
Hashes
| Type |
Hash |
| MD5 |
583B05D3B0756D346D0EE95D64105FB1 |
| SHA1 |
5CFC21DF2B7315B78EA8D5DA13FEBAAA04B593CE |
| SHA256 |
462463DC74ECD9C39C2631E7B2F068E65A6DEA82442E31E19A80DDFF62026F16 |
| SHA384 |
6C187835394585F679256E64FB1C72B6D006B9523C624453C5091D0A4520E425C482FDF9BD988351ACD530F5E189A415 |
| SHA512 |
5750BE10104FFD411B642D226C33CEDED5EC953B77CD3B3EDEFA902B0DF0C3DD640E6E759708A7857059056B76DE61A61AEF323B3056D7B3B66283BAC9E3EB7C |
| SSDEEP |
3072:MYmoWWTuaVhiA/oOMqqDj1mkCb5Po9lRDdIK2ysyLh6+K9w3GO3WNZpz:MAolqqDZ4bKDdV7sqh6L5O0b |
| IMP |
464BBECEE2AB49F204966C99159E12A5 |
| PESHA1 |
5D3FEC9652F47821547E5C870261F04F1D85FEA2 |
| PE256 |
E92A7BAF8DB763E5EC7D9878B19FF872E804959BE836EED3CADD25012430DE7A |
Runtime Data
Usage (stdout):
Error 0x80070057: Server initialization
Loaded Modules:
| Path |
| C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\kdsrv.exe |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\wow64.dll |
| C:\Windows\System32\wow64cpu.dll |
| C:\Windows\System32\wow64win.dll |
Signature
- Status: Signature verified.
- Serial:
33000002CF6D2CC57CAA65A6D80000000002CF
- Thumbprint:
1A221B3B4FEF088B17BA6704FD088DF192D9E0EF
- Issuer: CN=Microsoft Code Signing PCA 2010, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: kdsrv.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: Unknown
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.