pspluginwkr.dll
- File Path:
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\pspluginwkr.dll
- Description: pspluginwkr.dll
Hashes
| Type |
Hash |
| MD5 |
2C46965E646866D37292EEC4D6B0E39E |
| SHA1 |
3DE026EAD09443B90E951AFDAF150C6D4A3E288C |
| SHA256 |
72A02C5ABF3506E79CBB6FBB99AEB4F44D480D3C707226BD4F6135B95E6C81E0 |
| SHA384 |
D98A36AD863B1990AA5096A56E355CE9514447B53F28A22BC0073AFC99E05E45DB127115172051BA8519A5C435E4F9D6 |
| SHA512 |
A36E0A865E1C71342B7AF60893E776E5F223A14B1793E02BD4553F23893FDD2CF3E4BBDA7DD2BC691BEDBB1D59FB1380790A898F13BB11A7AF26F34C8A45AFE4 |
| SSDEEP |
3072:0Cc3HVebdwA+OJyAXMmrBi38GIVXe47dCDqNvI+ZNcOiEww+4TMxVnvid:0CAE6tOJyAXMmrBi38GIVXe47dCDqNvj |
| IMP |
42E96C9D6B7177141016B69F4C2C69AA |
| PESHA1 |
7C5B7E50655FE9339D0F2902A26CB18C93973391 |
| PE256 |
83080DE5174C22C9DEAD8042D77C62C7C9A3058C873EAC5E694ABB58D78EF160 |
DLL Exports:
| Function Name |
Ordinal |
Type |
WSManPluginSend |
6 |
Exported Function |
WSManPluginReleaseShellContext |
5 |
Exported Function |
WSManPluginSignal |
8 |
Exported Function |
WSManPluginShell |
7 |
Exported Function |
WSManPluginCommand |
2 |
Exported Function |
InitPlugin |
1 |
Exported Function |
WSManPluginReleaseCommandContext |
4 |
Exported Function |
WSManPluginReceive |
3 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: pspluginwkr.dll.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 6.1.7600.16385 (win7_rtm.090713-1255)
- Product Version: 6.1.7600.16385
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/68
- VirusTotal Link: https://www.virustotal.com/gui/file/72a02c5abf3506e79cbb6fbb99aeb4f44d480d3c707226bd4f6135b95e6c81e0/detection/
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.