provlaunch.exe
- File Path:
C:\Windows\SysWOW64\provlaunch.exe
- Description: Provisioning package runtime command launching tool
Hashes
| Type |
Hash |
| MD5 |
4F43F86CB657BCEA8CDFC4E242AD1C39 |
| SHA1 |
C1F6EC1098B6DFB25235CAF2F0721C72B38011CC |
| SHA256 |
B602337A386A68AA4B7D1E3D863A158601CF0891C22ABF8B29427CAE87853F82 |
| SHA384 |
3E058D5582995822C003D9D0E65E424F2760784DF3660DFE0D7FB878399A1924F0ABC3F0B942EDEF26B1020CD35B2967 |
| SHA512 |
94787531E4D0A9FF5515A8EAB69CDEC0FE0A82733E032C2D73902C779C0D5C16C11CEC9E8902DC81DAF657A14578D224F553B7EF07CEB535D115572446702B5A |
| SSDEEP |
768:2o1z8M3rpu+Ng2pWyEyu9NV1EfHGKhcJj3iPFpGr7Ri48Y6EoVapsvqM57PVThvE:B1z8KuuzhW9NV1QIJj3iKRi48Qoop81E |
| IMP |
39FF8560269B45333304DEB510F143F9 |
| PESHA1 |
A950AF4520D628B9DB6EDA9D98CF4334895D1152 |
| PE256 |
EEFABFB5B5A8B10BC760639D85807DEB68411B7A452AE2B0E9D7D4B44B02AB1B |
Runtime Data
Loaded Modules:
| Path |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\wow64.dll |
| C:\Windows\System32\wow64cpu.dll |
| C:\Windows\System32\wow64win.dll |
| C:\Windows\SysWOW64\provlaunch.exe |
Signature
- Status: Signature verified.
- Serial:
330000026551AE1BBD005CBFBD000000000265
- Thumbprint:
E168609353F30FF2373157B4EB8CD519D07A2BFF
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: provlaunch
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/75
- VirusTotal Link: https://www.virustotal.com/gui/file/b602337a386a68aa4b7d1e3d863a158601cf0891c22abf8b29427cae87853f82/detection
MIT License. Copyright (c) 2020-2021 Strontic.