pid.dll
- File Path:
C:\Windows\system32\pid.dll
- Description: Microsoft PID
Hashes
| Type |
Hash |
| MD5 |
9FAD2937691257780325FD49BEC97D3C |
| SHA1 |
66DDAFDD4C1A7C2736173B40459F82DDC1487726 |
| SHA256 |
03F3481453CDD985200C09FB9C43DAE8773E3CB3C4ABE015C60E6637B5131B73 |
| SHA384 |
CD2FB09326DFEE327D10CE54A701B65468ACA9D7F11AD397393803B28C75F6EDCFDA402919F75732353F9644AEEC5EF0 |
| SHA512 |
4B37022E5A7EE615D6E4172A9BE5DA9C615650EAE0E410ACA4E8414402C499B5B354001C5A74B36723D03BE5107A82597FB138DACDA1191E8475C15DB91C2DB9 |
| SSDEEP |
768:MPqavf6B6xEZ/4tJU9QQuhChT24/rsNpp8eMlXPASBwlereAvLJmspk:gf84WS+9QQXdrsNNOfQ7YLJ3k |
| IMP |
6B9A05F0ABF8D9FA1F0923D6BF9F7572 |
| PESHA1 |
48FAEF6976595C30BFA92D807D38AFF4571D33C4 |
| PE256 |
1D556E94228628ADDA78C81AFC4FD9FEFE0E09E96A73E2AFD8C93B08CE32B3D4 |
DLL Exports:
| Function Name |
Ordinal |
Type |
PID_GetFFEffectSettingsFromMemory |
3 |
Exported Function |
PID_WriteFFEffectSettingsToMemory |
4 |
Exported Function |
DllCanUnloadNow |
1 |
Exported Function |
DllGetClassObject |
2 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: PID
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/71
- VirusTotal Link: https://www.virustotal.com/gui/file/03f3481453cdd985200c09fb9c43dae8773e3cb3c4abe015c60e6637b5131b73/detection/
MIT License. Copyright (c) 2020-2021 Strontic.