pospaymentsworker.exe
- File Path:
C:\WINDOWS\system32\pospaymentsworker.exe
Hashes
| Type |
Hash |
| MD5 |
12F134CBC3E0A11BE0DACE41F18C4543 |
| SHA1 |
6E2BD8953AFFDDFA31603B15B45778539B9079CE |
| SHA256 |
7D3933F716FC601F688429AE7949AD24A1DA3B8DB504591FA60A29ED15CE0E80 |
| SHA384 |
A1BDF5FB37824B55F9FB1740BB0CDDCCC17FF069A349D2EA9DC837B16D19AD19828643FE8D9AF992265440FBC3DD2787 |
| SHA512 |
2E4A8062A9F1CCD2FE5770AAF926029B676C2103EED671F659FE1459A159205660BA8E3030383FD6539E1AD1EB5FF3BBDC2CEDE94623F423465E2FAF03085A44 |
| SSDEEP |
1536:Jt/sWi0hyPpCTuZZOWwTzRf4/ijeJFeRv0J:vA1pZOWwTzK/LJ4Rv0J |
| IMP |
4F405554D882F78A05E90F7D0E034497 |
| PESHA1 |
02B8B2F2733D932EF0DE919E7A06F422B9EE5BBA |
| PE256 |
52BE4A2BE42627EB7D922B6015D9620CE4441352BEC177D41C4345D465F63348 |
Runtime Data
Loaded Modules:
| Path |
| C:\WINDOWS\System32\KERNEL32.DLL |
| C:\WINDOWS\System32\KERNELBASE.dll |
| C:\WINDOWS\SYSTEM32\ntdll.dll |
| C:\WINDOWS\system32\pospaymentsworker.exe |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED
- Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename:
- Product Name:
- Company Name:
- File Version:
- Product Version:
- Language:
- Legal Copyright:
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/73
- VirusTotal Link: https://www.virustotal.com/gui/file/7d3933f716fc601f688429ae7949ad24a1da3b8db504591fa60a29ed15ce0e80/detection
MIT License. Copyright (c) 2020-2021 Strontic.