perfhost.exe
- File Path:
C:\WINDOWS\SysWOW64\perfhost.exe
- Description: x86 Performance Counter Host
Hashes
| Type |
Hash |
| MD5 |
76F2A6B57A89C2A2BA415A584757AF80 |
| SHA1 |
C0DE5DBB65A62CF932810509792DF57B495495B6 |
| SHA256 |
8E0BC2C99AFDB1AA9EA9BE6F9EF54DCBCD72C891D87202D99E932C60526C13CC |
| SHA384 |
15A49362D2C91EAA089A313F0942434558D1BF1DE49F4A37A8CBAE63C2A895233127CEDA96F5D3811A360E6BD2BF400C |
| SHA512 |
9A046BC7A20FF5A86F244EF9A8613F995E2B6536AAF32396B41DDE06A02EE94871607854624C375A18BEE5CFC82AFCC42896538A0009CCD047DF5AC7FEEB3D3B |
| SSDEEP |
384:AabhVTUULljR6KY6p1bTh1Zsc4pqWA0W65Ftgcq5:1FVQCl1lBsc4pc4Rq5 |
| IMP |
8D5844FD312E4B4DE80E5A985C8DF3AC |
| PESHA1 |
75C5BE4C9F44F971DF8C7FB5B125BC447E5917B9 |
| PE256 |
8C862346699BB9D727E57F5101F6EA0A5A5D0B0FD94A73B814B1E519FF2C619B |
Runtime Data
Loaded Modules:
| Path |
| C:\WINDOWS\SYSTEM32\ntdll.dll |
| C:\WINDOWS\System32\wow64.dll |
| C:\WINDOWS\System32\wow64base.dll |
| C:\WINDOWS\System32\wow64con.dll |
| C:\WINDOWS\System32\wow64cpu.dll |
| C:\WINDOWS\System32\wow64win.dll |
| C:\WINDOWS\SysWOW64\perfhost.exe |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED
- Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: perfhost.exe.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.22000.1 (WinBuild.160101.0800)
- Product Version: 10.0.22000.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/73
- VirusTotal Link: https://www.virustotal.com/gui/file/8e0bc2c99afdb1aa9ea9be6f9ef54dcbcd72c891d87202d99e932c60526c13cc/detection
MIT License. Copyright (c) 2020-2021 Strontic.