provlaunch.exe
- File Path:
C:\WINDOWS\SysWOW64\provlaunch.exe
- Description: Provisioning package runtime command launching tool
Hashes
| Type |
Hash |
| MD5 |
81AAFEE98CF56AF475E13ECC8CF04E7E |
| SHA1 |
07E9BE0814F57D5E6257926283DD211864B26A2F |
| SHA256 |
92CF2FE731351645ECA10B4942E1C4E3164222F5EB83F942798AAC699EF78B7B |
| SHA384 |
DEC552C62C47B6AC0335253ABE607E169CC885092D61C4A9770E43C91B70575A5BDBC4C39C251B72E510D949BBBB9319 |
| SHA512 |
54C9A33E64C03E42845D226AC30C622AA33BD5712078D8D94CEA9C992C8216A4176ED175776CB3952515BDF50424413C27D9A3774CA69040C7F952DFAFC4A130 |
| SSDEEP |
1536:0k9MCEet+p09XpiUSpB7OKgroykHe7eG6PpAgwo:UCEpSZiU40Xro1He7e5Avo |
| IMP |
A8B609D260BE39338F1088B85789C5EE |
| PESHA1 |
FDA93E554E5B7E968CB55FD8BF5AB8A074A439CE |
| PE256 |
B5DD512B97EAA2660E547F0AD4A21AC72F690B9B06270FC138B737C1394A9600 |
Runtime Data
Loaded Modules:
| Path |
| C:\WINDOWS\SYSTEM32\ntdll.dll |
| C:\WINDOWS\System32\wow64.dll |
| C:\WINDOWS\System32\wow64base.dll |
| C:\WINDOWS\System32\wow64con.dll |
| C:\WINDOWS\System32\wow64cpu.dll |
| C:\WINDOWS\System32\wow64win.dll |
| C:\WINDOWS\SysWOW64\provlaunch.exe |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED
- Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: provlaunch
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.22000.1 (WinBuild.160101.0800)
- Product Version: 10.0.22000.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/73
- VirusTotal Link: https://www.virustotal.com/gui/file/92cf2fe731351645eca10b4942e1c4e3164222f5eb83f942798aac699ef78b7b/detection
MIT License. Copyright (c) 2020-2021 Strontic.