nvda.exe

  • File Path: C:\Program Files (x86)\NVDA\nvda.exe
  • Description: NVDA application

Screenshot

nvda.exe nvda.exe

Hashes

Type Hash
MD5 A61AE8F412C2060035D05172AA483DB1
SHA1 6CB8A748E4EEAE50AE386D89AE170B1058135654
SHA256 A4979CC7426F14976F5A9F57C3B19F49AE038EA5E98DD6CEF7F0EA40AA8A70E2
SHA384 D974A95E6A19A1403AC7A5D0CD75B61D857E9E2CDAFA1A45D00C067E9A7D972C0AAE252A78AC28BAD78DE7293E4673A9
SHA512 2751733467F9EB25F8C2B92F7AC2FA7FBE1478B8D2A81AA9BC1CB7550209F3EF42640938F99B87744094DD0FA9244E5C6A9E0F774BBEA4A014FA66B56CAC74A8
SSDEEP 1536:Gpnbg3WNzDBTOeJdc6kz2r29hrKkEC/RK1o5DEO:G+YDBT46vwEC/MouO
IMP 2A9DF92EE15731BBE6E6DF974A9E6E00
PESHA1 1E870CC6D0E092DEEE6E3C3A6B64A6B8B0FE0970
PE256 40081C3ACCB809BB5137457096BF5B58E2ED0296C0733AC7AA27E7934490DF73

Runtime Data

Child Processes:

nvdaHelperRemoteLoader.exe

Window Title:

Help

Open Handles:

Path Type
(R-D) C:\Windows\Fonts\StaticCache.dat File
(R-D) C:\Windows\System32\en-US\kernel32.dll.mui File
(R-D) C:\Windows\System32\en-US\KernelBase.dll.mui File
(RW-) C:\Program Files (x86)\NVDA File
(RW-) C:\Windows File
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000002.db Section
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000002.db Section
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*cversions.2 Section
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 Section
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 Section
\Sessions\1\Windows\Theme449731986 Section
\Windows\Theme1396518710 Section

Loaded Modules:

Path
C:\Program Files (x86)\NVDA\nvda.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll

Signature

  • Status: Signature verified.
  • Serial: 01F88F85EC0E5501C9810C1D40F77C21
  • Thumbprint: B1CFD0C99D00FC4B8FBCAA1BA24FA48F6770C461
  • Issuer: CN=DigiCert SHA2 Assured ID Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US
  • Subject: E=sysadmin@nvaccess.org, CN=NV Access Limited, O=NV Access Limited, L=Camp Mountain, S=Queensland, C=AU

File Metadata

  • Original Filename: nvda_uiAccess.exe
  • Product Name: NVDA
  • Company Name: NV Access
  • File Version: 2021.2.0.23747
  • Product Version: 2021.2
  • Language: English (United States)
  • Legal Copyright: Copyright (C) 2006-2021 NVDA Contributors
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/73
  • VirusTotal Link: https://www.virustotal.com/gui/file/a4979cc7426f14976f5a9f57c3b19f49ae038ea5e98dd6cef7f0ea40aa8a70e2/detection

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\NVDA\nvda.exe 38
C:\Program Files (x86)\NVDA\nvda_dmp.exe 44
C:\Program Files (x86)\NVDA\nvda_eoaProxy.exe 68
C:\Program Files (x86)\NVDA\nvda_eoaProxy.exe 41
C:\Program Files (x86)\NVDA\nvda_noUIAccess.exe 40
C:\Program Files (x86)\NVDA\nvda_noUIAccess.exe 83
C:\Program Files (x86)\NVDA\nvda_slave.exe 38
C:\Program Files (x86)\NVDA\nvda_slave.exe 66
C:\Program Files (x86)\NVDA\nvda_uiAccess.exe 38
C:\Program Files (x86)\NVDA\nvda_uiAccess.exe 100

MIT License. Copyright (c) 2020-2021 Strontic.