offlinelsa.dll
- File Path:
C:\Windows\SysWOW64\offlinelsa.dll
- Description: Windows
Hashes
| Type |
Hash |
| MD5 |
2910ED3108194CF8D66B2E17BC0284DC |
| SHA1 |
F2775C6ABA0F59EB051BAB1C4F7848DA70DC7957 |
| SHA256 |
74747325FF491A7AA0EAD5BB311C85E8D73629E7888BBDBB46E75D4768C8E7BA |
| SHA384 |
DE3C789F81B999780996A2398AFD88EF51A7B411CB5D08F33FFF0793A6DE9A9702FFEABA95AA298F33F0947B02A11274 |
| SHA512 |
B3416EC133E757CA3620193683DE7DAE05BA179036ACE39F136589E493AF15F85BEEE6D2A0AD4D8CC689DB1E6EF682DDD86EBBCC6FF62201641015496B034AC3 |
| SSDEEP |
3072:5Dcqf7Dy/anqmq/cMhdsx0p0CkVC/wDDGiIw:5wqf7DuC4cHxAwDzX |
| IMP |
768839C7A9494F31F1CCD00DD7283BB0 |
| PESHA1 |
7408DD261BC1DA6AA73793C114C49761D82801EE |
| PE256 |
810BE3170525A801ECD1FF5799E06176F0F1A33555143861F4EF3955F111D480 |
DLL Exports:
| Function Name |
Ordinal |
Type |
LsaOfflineOpenPolicyExternal |
13 |
Exported Function |
LsaOfflineOpenPolicyForInstaller |
14 |
Exported Function |
LsaOfflineOpenAccount |
11 |
Exported Function |
LsaOfflineOpenPolicy |
12 |
Exported Function |
LsaOfflineQueryInformationPolicy |
15 |
Exported Function |
LsaOfflineSetSystemAccessAccount |
18 |
Exported Function |
LsaOfflineSyskeyRequest |
19 |
Exported Function |
LsaOfflineRemoveAccountRights |
16 |
Exported Function |
LsaOfflineRemovePrivilegesFromAccount |
17 |
Exported Function |
LsaOfflineGetSystemAccessAccount |
10 |
Exported Function |
LsaOfflineClose |
3 |
Exported Function |
LsaOfflineCreateAccount |
4 |
Exported Function |
LsaOfflineAddAccountRights |
1 |
Exported Function |
LsaOfflineAddPrivilegesToAccount |
2 |
Exported Function |
LsaOfflineDelete |
5 |
Exported Function |
LsaOfflineEnumeratePrivilegesOfAccount |
8 |
Exported Function |
LsaOfflineFreeMemory |
9 |
Exported Function |
LsaOfflineEnumerateAccountRights |
6 |
Exported Function |
LsaOfflineEnumerateAccounts |
7 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: offlinelsa.dll
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/71
- VirusTotal Link: https://www.virustotal.com/gui/file/74747325ff491a7aa0ead5bb311c85e8d73629e7888bbdbb46e75d4768c8e7ba/detection/
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.