signdrv.dll
- File Path:
C:\Windows\SysWOW64\signdrv.dll
- Description: WMI provider for Signed Drivers
Hashes
| Type |
Hash |
| MD5 |
31C320461E2CD422637C5D5383F9A377 |
| SHA1 |
128B3BE471C859847B18779D83DEC0D6CE1A8E97 |
| SHA256 |
37E68E133309F5311CFE95527028A398CB6821FAB037B17797536F5246F94DFC |
| SHA384 |
A142D1F48E0356763D2639D023DE8A84211FF916FBB26FCD32CB492929E684ED6DE81FFEFC0618831BC6F88D61BE82DA |
| SHA512 |
96EEDED386CE9EDDE8D1DAF78034C2DB08CB346FBCC63F9FD6B0018131F6034E1181D7F7D2BFFE4ACB53B9B726296FD6CF7142E5E738448937AE19552B256296 |
| SSDEEP |
768:W1VsLAdV5ptibBH31r5ux8pg5Ze3CTkbRKmOVu:W1zLtibBH31rE8pSmkkbZCu |
| IMP |
0CE08CB314F6BC47B58EBF91E6D109DF |
| PESHA1 |
CC7EA473D72E570022F20376C07D33F95F123815 |
| PE256 |
1DD804EE0341097E4DA3E6DC69E737ED615A5A31C89A262A36077AFF063E053A |
DLL Exports:
| Function Name |
Ordinal |
Type |
DllRegisterServer |
3 |
Exported Function |
DllUnregisterServer |
4 |
Exported Function |
DllCanUnloadNow |
1 |
Exported Function |
DllGetClassObject |
2 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: signdrv.dll
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/71
- VirusTotal Link: https://www.virustotal.com/gui/file/37e68e133309f5311cfe95527028a398cb6821fab037b17797536f5246f94dfc/detection/
MIT License. Copyright (c) 2020-2021 Strontic.