sdiagprv.dll
- File Path:
C:\Windows\system32\sdiagprv.dll
- Description: Windows Scripted Diagnostic Provider API
Hashes
| Type |
Hash |
| MD5 |
3B7BEA6EE0710FC4147DC34EC8FDAAAE |
| SHA1 |
4BDE2D5600DCAC9A94602455B9685140E578AE03 |
| SHA256 |
2BE5D451DA07B9CF1966026D1D239983340A2AC1A05CA51620B1A9856CF87055 |
| SHA384 |
EB35ABDF2C2EE8814FA125DDDF7FECE5F56FC28DC5D2604618F5E494B84199A66229BDB4C6D9BA048FBFDE1690E2ADA1 |
| SHA512 |
DDFA5127CB5288D9B47D71DF96637107B897F8F6D57D07DE07FB2A5E6202B5AE421AB4DB458E375D8BDDFB978D1902C60A51691BE8B1A9F5A9C8B8749640F748 |
| SSDEEP |
3072:e2batRB9lOUR/n9v1zzKVu7BMMChPn/jzLA3LGnMjjuL+XNd:nmt2E/n9v1HKVuFMMCxnDA3L |
| IMP |
04A75E5F37E32EFCBB40C6C31D23EE36 |
| PESHA1 |
CB35251363EC99DE9D393155FC410733499D2672 |
| PE256 |
10AEB73D15796FC4ADC72176FA94696067A3CE47A3E9D6023B39B56366BA89F2 |
DLL Exports:
| Function Name |
Ordinal |
Type |
DllGetClassObject |
2 |
Exported Function |
DllCanUnloadNow |
1 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: SDIAGPRV.DLL.MUI
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/71
- VirusTotal Link: https://www.virustotal.com/gui/file/2be5d451da07b9cf1966026d1d239983340a2ac1a05ca51620b1a9856cf87055/detection/
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.