nvdaHelperRemoteLoader.exe

  • File Path: C:\Program Files (x86)\NVDA\lib64\2020.2\nvdaHelperRemoteLoader.exe

Hashes

Type Hash
MD5 D24B6AECD118B31114223D59F94BC83F
SHA1 ACBE28E19CE261357DA46526BCE270C28BD81AFF
SHA256 A730C22B8C55B2F8E1E5FEADAC5B272994522532A79CBF6A11B9CD889ED84A0A
SHA384 0B85DAA76A747B5B9246ACB92913534D6E99A7E66FE8E7A168A356F1DE8CF5015445AD0E8C739E426B6084BF69F804EF
SHA512 D1B0158B85560AAD8D1663E5DF07CC5EBE32A304AB8D23464AD11514CBFF2522579E886E989420BDCB3A2C8BF9F5D8BC2D231E4BD7161E91EAE0BD3CF5AEE9E0
SSDEEP 3072:MBnpe5KCvAXqofRQkLJHf+gS5Ma/eztL0TvHH:MXe5KCvAfJQk7iaL0Tvn
IMP A0A716584A22145BCF1ABAD1777F1F77
PESHA1 CECF9EA2BBB609A888C0EFDC5BA3FB047E5CD048
PE256 BBE10E6C7F50481C0EB7C64C852EFD89A56630B9DE78B43982FEAC37723506F4

Runtime Data

Open Handles:

Path Type
(R-D) C:\Windows\Fonts\StaticCache.dat File
(RW-) C:\Program Files (x86)\NVDA\lib64\2020.2 File
(RW-) C:\xCyclopedia File
\BaseNamedObjects__ComCatalogCache__ Section
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 Section
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 Section
\Sessions\1\Windows\Theme2547664911 Section
\Windows\Theme3854699184 Section

Loaded Modules:

Path
C:\Program Files (x86)\NVDA\lib64\2020.2\nvdaHelperRemote.dll
C:\Program Files (x86)\NVDA\lib64\2020.2\nvdaHelperRemoteLoader.exe
C:\Windows\System32\ADVAPI32.dll
C:\Windows\System32\combase.dll
C:\Windows\SYSTEM32\dbgcore.DLL
C:\Windows\SYSTEM32\dbghelp.dll
C:\Windows\System32\GDI32.dll
C:\Windows\System32\gdi32full.dll
C:\Windows\System32\IMM32.dll
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\System32\msvcp_win.dll
C:\Windows\System32\msvcrt.dll
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\ole32.dll
C:\Windows\SYSTEM32\OLEACC.dll
C:\Windows\System32\OLEAUT32.dll
C:\Windows\System32\RPCRT4.dll
C:\Windows\System32\sechost.dll
C:\Windows\System32\SHLWAPI.dll
C:\Windows\System32\ucrtbase.dll
C:\Windows\System32\USER32.dll
C:\Windows\SYSTEM32\VERSION.dll
C:\Windows\System32\win32u.dll

Signature

  • Status: Signature verified.
  • Serial: 05A5D5961B5ACC20CC6D4929DA8ADC85
  • Thumbprint: 48F05E5489B4ED66E5C7D110CD0371047457CFA6
  • Issuer: CN=DigiCert SHA2 Assured ID Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US
  • Subject: E=sysadmin@nvaccess.org, CN=NV Access Limited, O=NV Access Limited, L=Camp Mountain, S=Queensland, C=AU

File Metadata

  • Original Filename:
  • Product Name:
  • Company Name:
  • File Version:
  • Product Version:
  • Language: English (United States)
  • Legal Copyright:
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: 0/72
  • VirusTotal Link: https://www.virustotal.com/gui/file/a730c22b8c55b2f8e1e5feadac5b272994522532a79cbf6a11b9cd889ed84a0a/detection/

MIT License. Copyright (c) 2020-2021 Strontic.