ntvdm64.dll
- File Path:
C:\Windows\system32\ntvdm64.dll
- Description: 16-bit Emulation on NT64
Hashes
| Type |
Hash |
| MD5 |
3C4855F7897A505619BD8ED648475C72 |
| SHA1 |
17C6C526010FF532B5A68E0AD9F10C726F3789EA |
| SHA256 |
B9590B5369538C32D36B4DBA35779B750A757268B00B33C95862314CCE5BFCD5 |
| SHA384 |
13EA0D0C739D894A29405BA4305105075953C506A23FDD22960C60C6D192021AF271866AC493DC64DF35179040724DB1 |
| SHA512 |
18A93C56CCCCD3DDE374B100D22173A72C07E32D2D432C1CE176797D729CCDCFFFA79404BBAAE3623671312D84E3626E29A58158F9D272BCF88C297650559C81 |
| SSDEEP |
384:2B7OLn7onx9mnwEH+m6wGmO3yq8Vn8pwPG73BovxQWzpuWR:LognwEHTpvnV8peGDSvbp |
| IMP |
DD0E8E26FA9213A5CFFFFF1806F14EBE |
| PESHA1 |
A2489D8DE148C9281AFBA787DB244A2F8A08E25E |
| PE256 |
4BB073F0CA5ED2C7B06AB641BA809C4941F79D5A067F75319F55E34F42CD2787 |
DLL Exports:
| Function Name |
Ordinal |
Type |
NtVdm64RaiseInvalid16BitError |
3 |
Exported Function |
NtVdm64CreateProcessInternalW |
2 |
Exported Function |
DllInstall |
1 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
330000026551AE1BBD005CBFBD000000000265
- Thumbprint:
E168609353F30FF2373157B4EB8CD519D07A2BFF
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: ntvdm64.dll.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/68
- VirusTotal Link: https://www.virustotal.com/gui/file/b9590b5369538c32d36b4dba35779b750a757268b00b33c95862314cce5bfcd5/detection/
MIT License. Copyright (c) 2020-2021 Strontic.