perfproc.dll
- File Path:
C:\Windows\system32\perfproc.dll
- Description: Windows System Process Performance Objects DLL
Hashes
| Type |
Hash |
| MD5 |
86469971580B94755D8D651CCA9DD4D9 |
| SHA1 |
EA788BE73317EE34242437011A0B4A2F3205AF35 |
| SHA256 |
4D682F54776008AA4FD4DBBB5C091C549CBF88E48C458ABE1256E71F6F68F33B |
| SHA384 |
AD022F6673A04B781A6C6166AAB758203063C92FF86E5942E2B5AD1F02BE6587D22431F114C6AF723FD5EAC016716B23 |
| SHA512 |
2167F7D40A3BC17895680B03C21E830090967FFAD0A0CA8DE4E28D6710394B111857A89F0FD88048D30D5268D4D511E37BB74097210534DF3A8FACC57E93BE7E |
| SSDEEP |
768:YuUp45ncqpmp3Q7d7GZyEQfuGaH8x+z97TMS:Yul5nEp3Q7d76MuGfQz97b |
| IMP |
6CA58B5AEF68556D56D0B1A335EF0BA3 |
| PESHA1 |
EBCE911552DB67C1DBE220645671F107F73B03AD |
| PE256 |
1A631F5C4739C032599D9B281E67C66255CC1AB1742AA1EB1F7A90F1B3E7B3D7 |
DLL Exports:
| Function Name |
Ordinal |
Type |
OpenSysProcessObject |
3 |
Exported Function |
CollectSysProcessObjectData |
2 |
Exported Function |
CloseSysProcessObject |
1 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: PERFPROC.DLL.MUI
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/66
- VirusTotal Link: https://www.virustotal.com/gui/file/4d682f54776008aa4fd4dbbb5c091c549cbf88e48c458abe1256e71f6f68f33b/detection/
MIT License. Copyright (c) 2020-2021 Strontic.