perfproc.dll
- File Path:
C:\Windows\SysWOW64\perfproc.dll
- Description: Windows System Process Performance Objects DLL
Hashes
| Type |
Hash |
| MD5 |
02BEE8BAFE2162AA17E866D6D3CE37DD |
| SHA1 |
AA9479530DF0D42A3D1F726E1729B102D26A822E |
| SHA256 |
53990F669F8A7209302D84D5351FB510534080B2E5EABD6B90A19AD587E43675 |
| SHA384 |
31553C7B83B73DA11B84D75794C8360C219716B5BB8E12C597344ABA9BC2350DF594FA4CED6E4C1D075C4889A16610A9 |
| SHA512 |
11DBF48CA8FF57F45FE0C11CE16B0CC21798C87A9BA12BA5FFEC7AC7F60E90D507A4156135E9A6210491727DC7573AA22F95E86A1B3395502713F1A35E580699 |
| SSDEEP |
384:x3LeboWW3X6XcSLHRu0Abl/a+x2PfBNWn084xd+48/QuBGMMbL6K90kY9qfWYkm1:Zr/azbH84x38/QuBGMM49pCh |
| IMP |
0856B45EAC8A3F509DD15B84E94428C4 |
| PESHA1 |
6B85873CA237D57C99AB57C363B7E5FDFDA75B61 |
| PE256 |
B430FE825C6AB2232B125DEEEE7562D19153F8AFF9C2692ECBAFDAA1D88E48E5 |
DLL Exports:
| Function Name |
Ordinal |
Type |
OpenSysProcessObject |
3 |
Exported Function |
CollectSysProcessObjectData |
2 |
Exported Function |
CloseSysProcessObject |
1 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: PERFPROC.DLL
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.488 (WinBuild.160101.0800)
- Product Version: 10.0.19041.488
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/69
- VirusTotal Link: https://www.virustotal.com/gui/file/53990f669f8a7209302d84d5351fb510534080b2e5eabd6b90a19ad587e43675/detection/
MIT License. Copyright (c) 2020-2021 Strontic.