msimg32.dll

File Path: C:\Windows\SysWOW64\msimg32.dll
Description: GDIEXT Client DLL

Hashes

Type	Hash
MD5	`FD0043C3FB4265F281A749F1FB789975`
SHA1	`1D43963BA70B7F0530C5A7D4BCECB12F36D6BE8F`
SHA256	`BCD2E891B59C7587D6C63B21E5B4B0B2AE9E4817438CD71C886C7DA0FCA6A7D8`
SHA384	`DCBD22A28F17E1E452E967FE170E9B38FDB054C7E0A8D08431B4211AE9DFCD560A53F22705027CCD2C48CD8D8932867E`
SHA512	`815985AB59A5137204A0AA579313354906D4CEE9BAF320FD78455D1B20CEB11B2C7F19217FFC190029BC13849185997F79D0BD6ED5C0443CD77FC0FABD3CBAF2`
SSDEEP	`96:gVhhr9k9TzxuksJR5gAHGP9/iycYRZV6EW3KIWwS:gDhrC9TzxukGR5gAmPNiyTRZhW3KIWB`
IMP	`17B25EB8A790F861391DC5C262A48D49`
PESHA1	`8802687591A5A6085106DF1B41766C5296DEAEE0`
PE256	`75F66F81ABDBB1E901C530283482161D939DF78734740160D0AD96040D54DD67`

DLL Exports:

Function Name	Ordinal	Type
`TransparentBlt`	5	Exported Function
`vSetDdrawflag`	1	Exported Function
`GradientFill`	4	Exported Function
`AlphaBlend`	2	Exported Function
`DllInitialize`	3	Exported Function

Signature

Status: Signature verified.
Serial: 3300000266BD1580EFA75CD6D3000000000266
Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: gdiext
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 10.0.19041.508 (WinBuild.160101.0800)
Product Version: 10.0.19041.508
Language: English (United States)
Legal Copyright: Microsoft Corporation. All rights reserved.
Machine Type: 32-bit

File Scan

VirusTotal Detections: 0/66
VirusTotal Link: https://www.virustotal.com/gui/file/bcd2e891b59c7587d6c63b21e5b4b0b2ae9e4817438cd71c886c7da0fca6a7d8/detection/

File Similarity (ssdeep match)

File	Score
C:\Windows\system32\msimg32.dll	33

MIT License. Copyright (c) 2020-2021 Strontic.