prproc.exe
- File Path:
C:\WINDOWS\system32\prproc.exe
- Description: PlayReady Process EXE
Hashes
| Type |
Hash |
| MD5 |
E6C97844026EEA9E8E0717FE77C73735 |
| SHA1 |
BD2BAEFC8D0CC0C99687C19527906BE909E426BD |
| SHA256 |
88769FC1B4A589554EED33BA6FDFCDEDC9B7885C89B9603095C695000047B55B |
| SHA384 |
3ACE05F34CC74918A7E6F482FD5DC4793B5CCA43C22348A3527639F0023CE18F4DE0946EEECEE3179ECC8C3F9AEE04DC |
| SHA512 |
C9D696127FD5E2E4D607BB1A11BA95640339DF51C310604B053AE67E25AF9C902320DD243FBF39C2BFBDB39F5D52E2439890CF9B727D535AE493BCF2C9855A3F |
| SSDEEP |
384:scXwmOIjbSVqHWmnDYgWwoOKDBRJXzWns4lGs/GFWC:3gIjbSVqr9K1PjWs5l |
| IMP |
6C59001E0768C2B59F1F170DAE94EAD2 |
| PESHA1 |
56A6821E1D738252E2B466C39D62AEF3D59023D7 |
| PE256 |
56116D6EAA9AFE5AD982D6380FB8471DE282C6CB1583AA4BBF2503E39AF64A47 |
Runtime Data
Loaded Modules:
| Path |
| C:\WINDOWS\System32\KERNEL32.DLL |
| C:\WINDOWS\System32\KERNELBASE.dll |
| C:\WINDOWS\SYSTEM32\ntdll.dll |
| C:\WINDOWS\system32\prproc.exe |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED
- Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: PlayReady Process EXE
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.22000.1 (WinBuild.160101.0800)
- Product Version: 10.0.22000.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/73
- VirusTotal Link: https://www.virustotal.com/gui/file/88769fc1b4a589554eed33ba6fdfcdedc9b7885c89b9603095c695000047b55b/detection
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.