ntsdexts.dll
- File Path:
C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\winxp\ntsdexts.dll
- Description: Symbolic Debugger Extensions
Hashes
| Type |
Hash |
| MD5 |
31B745EF2CFC7EF36E44D7F8DE4F15F7 |
| SHA1 |
7CA66C48CA98FBC5C1D15CC9951A44E910D6ECE5 |
| SHA256 |
DB79D453738A9F5479EE9D090DCC1423672E3761B5C0A0E65681FD434B2D26C6 |
| SHA384 |
204C43FC59F6EB1FFDFEF369BC480AAA087AC988592DA883C43E97B118D34E38A2D8B57F442668E82D5B66BB4F632EE4 |
| SHA512 |
8629AD957743B62F71F3B32874D16B8C0593B3E60C9C0CF1C351F2193554181FF0F78659954DD84DCC146AA7888379A860F3A676B9EFAE1F0EEB7FCD82B917D2 |
| SSDEEP |
1536:IT0Ou8mRhgQVvaNCianwhWNI1qWvwqTZufEcE33kR+o9HH1WRAjgFavYxOMYCX2T:IHu8mbiT/vLIXQuGKRbTpCZet |
| IMP |
CA9CD159EC79C2784C58650765F9970D |
| PESHA1 |
D07F2C1EAF2698F585681BAF97088F5BC8E2EFC6 |
| PE256 |
867E88BC68A0FF079DB95E4FFC6D58EB0AAD5A150F017BA69F015FD98A600418 |
DLL Exports:
| Function Name |
Ordinal |
Type |
hleak |
11 |
Exported Function |
help |
10 |
Exported Function |
handle |
9 |
Exported Function |
htrace |
12 |
Exported Function |
threadtoken |
15 |
Exported Function |
runaway |
14 |
Exported Function |
locks |
13 |
Exported Function |
gatom |
8 |
Exported Function |
DebugExtensionInitialize |
1 |
Exported Function |
critsec |
4 |
Exported Function |
_EFN_GetHandleTrace |
3 |
Exported Function |
DebugExtensionNotify |
2 |
Exported Function |
dt |
7 |
Exported Function |
dreg |
6 |
Exported Function |
dp |
5 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
33000002CF6D2CC57CAA65A6D80000000002CF
- Thumbprint:
1A221B3B4FEF088B17BA6704FD088DF192D9E0EF
- Issuer: CN=Microsoft Code Signing PCA 2010, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: ntsdexts
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: Unknown
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.