secinit.exe
- File Path:
C:\Windows\SysWOW64\secinit.exe
- Description: Security Init
Hashes
| Type |
Hash |
| MD5 |
3B4B8DB765C75B8024A208AE6915223C |
| SHA1 |
21F946BBAE92921EEAD50381370EC54E14F0AA08 |
| SHA256 |
AA365888AB4E37156F06EDF20049831BA7CD9203F6617A9632F1C8F3BCAFE15A |
| SHA384 |
17F4CBBDE238CF7AAF07BB55ACA18373DD88B90341D948D739837963363971811E846A4B88035FE6B577A6836EE22912 |
| SHA512 |
F865FC7F9C368212A4BB9F0A02B1FDA92F2611E7BF08D10DD2BB1892E3C46C819CE3F76E96E2B32E6E72F6C6CDEC2846613B861F7899F93B872B0C4F9A407591 |
| SSDEEP |
192:9KNxTON8nIUGwrPwY7tv1GQkNW8vbzRiW:9JN8nIUGw7wYZ0rNW8vbzRiW |
| IMP |
87C27A671C9F1DC5F6B0744E9E74293E |
| PESHA1 |
6B006F9DEFAB1AC099E5EBA5DB070EFFED829622 |
| PE256 |
FECD0AA8FADD232136959109761E479428196048FE1DF92A7A84C68DF2B3D1DF |
Runtime Data
Child Processes:
perfmon.exe
Loaded Modules:
| Path |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\wow64.dll |
| C:\Windows\System32\wow64win.dll |
| C:\Windows\SysWOW64\secinit.exe |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: secinit
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/76
- VirusTotal Link: https://www.virustotal.com/gui/file/aa365888ab4e37156f06edf20049831ba7cd9203f6617a9632f1c8f3bcafe15a/detection
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.