microsoft.performance.nt.shell.dll

File Path: C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\microsoft.performance.nt.shell.dll
Description: Windows Performance Analyzer NT Shell Add-In

Hashes

Type	Hash
MD5	`41A7B6959F161037915B927796690D59`
SHA1	`F6C271DC359B306AE8818292CD69AE8837F09F47`
SHA256	`A1DB8182BB62B81EC78AA9CCBC81680B505ABF51102508F7E03E1AF69213F18C`
SHA384	`8517466AD1087DB588EC6D0D5E46429DA6CB6E3BE2E6CA31BBCD88E52C7482FFF796468609609AEE2C96759C3BD418D6`
SHA512	`E955C87F1D5DCAE4E6069202C49FD69AD59976B8E97F597AC0F7C8484636455B6C246F77BB0FCC383E11FC8D38DECE0DBA613152B91508F1F55E454B4D6A3FDB`
SSDEEP	`384:NAAjqWgnbtB/xw/u+Nmdx1AUhxMoxrZOa8a9/8eBYxikjmWm6TWowGyT4JeRlF4z:1+WgxBa9chPZ6BXb`
PESHA1	`8ADE8810056F6BBD4AED94A8C52DE626CAAAC5A2`
PE256	`95B85261472D2B1F5DA9962FE890F27968E559D5442500BA5895F6F09F406A4B`

Signature

Status: Signature verified.
Serial: 33000002CF6D2CC57CAA65A6D80000000002CF
Thumbprint: 1A221B3B4FEF088B17BA6704FD088DF192D9E0EF
Issuer: CN=Microsoft Code Signing PCA 2010, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: Microsoft.Performance.NT.Shell.dll
Product Name: Microsoft Windows Performance Analyzer
Company Name: Microsoft Corporation
File Version: 10.0.19041.1 (WinBuild.160101.0800)
Product Version: 10.0.19041.1
Language: English (United States)
Legal Copyright: 2019 Microsoft Corporation. All rights reserved.
Machine Type: 64-bit

File Scan

VirusTotal Detections: 0/76
VirusTotal Link: https://www.virustotal.com/gui/file/a1db8182bb62b81ec78aa9ccbc81680b505abf51102508f7e03e1af69213f18c/detection

File Similarity (ssdeep match)

File	Score
C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\arm\UIAVerify\IQueryString.dll	27

MIT License. Copyright (c) 2020-2021 Strontic.