pospaymentsworker.exe

  • File Path: C:\WINDOWS\system32\pospaymentsworker.exe

Hashes

Type Hash
MD5 12F134CBC3E0A11BE0DACE41F18C4543
SHA1 6E2BD8953AFFDDFA31603B15B45778539B9079CE
SHA256 7D3933F716FC601F688429AE7949AD24A1DA3B8DB504591FA60A29ED15CE0E80
SHA384 A1BDF5FB37824B55F9FB1740BB0CDDCCC17FF069A349D2EA9DC837B16D19AD19828643FE8D9AF992265440FBC3DD2787
SHA512 2E4A8062A9F1CCD2FE5770AAF926029B676C2103EED671F659FE1459A159205660BA8E3030383FD6539E1AD1EB5FF3BBDC2CEDE94623F423465E2FAF03085A44
SSDEEP 1536:Jt/sWi0hyPpCTuZZOWwTzRf4/ijeJFeRv0J:vA1pZOWwTzK/LJ4Rv0J
IMP 4F405554D882F78A05E90F7D0E034497
PESHA1 02B8B2F2733D932EF0DE919E7A06F422B9EE5BBA
PE256 52BE4A2BE42627EB7D922B6015D9620CE4441352BEC177D41C4345D465F63348

Runtime Data

Loaded Modules:

Path
C:\WINDOWS\System32\KERNEL32.DLL
C:\WINDOWS\System32\KERNELBASE.dll
C:\WINDOWS\SYSTEM32\ntdll.dll
C:\WINDOWS\system32\pospaymentsworker.exe

Signature

  • Status: Signature verified.
  • Serial: 33000002ED2C45E4C145CF48440000000002ED
  • Thumbprint: 312860D2047EB81F8F58C29FF19ECDB4C634CF6A
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename:
  • Product Name:
  • Company Name:
  • File Version:
  • Product Version:
  • Language:
  • Legal Copyright:
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: 0/73
  • VirusTotal Link: https://www.virustotal.com/gui/file/7d3933f716fc601f688429ae7949ad24a1da3b8db504591fa60a29ed15ce0e80/detection

MIT License. Copyright (c) 2020-2021 Strontic.