signdrv.dll
- File Path:
C:\Windows\system32\signdrv.dll
- Description: WMI provider for Signed Drivers
Hashes
| Type |
Hash |
| MD5 |
4261F594C62D34A127567A4440DF2E8B |
| SHA1 |
38120C255CB3403A0100DE53FDB94F0A155EF00E |
| SHA256 |
5E2FEEDAEEFEBD5D7225159B056DEAC86803DE5F8EBBB63157F8D8A9E0F90917 |
| SHA384 |
00E9FB24F8DAB8FF51A1E31171973E696D7407D66BB83305D3883640C4E7FBEF7398A4D770BE070BD66D77E0071014FA |
| SHA512 |
E91A2B96824224D75ED327663F8455ED5285902704A5C66506685A445A39E20E789E23C67E10129D6248AC894B41718C1DEB5B1F1C2AB62C74DE60309A30D782 |
| SSDEEP |
768:N7ObzKbU9qO6bHuMTdut9hF6CIxpjXeGg8XzglYyUkJvn5KGcN2/eTqh:NabuS6bHuMTdut9hF6BpjvyYfkv8Ndq |
| IMP |
5E1EBA32254E7C8ECEC174C1797783B5 |
| PESHA1 |
9AB9AD54D2436E837D80E323EF11109252AB04A8 |
| PE256 |
0E544BDE092065FA7F23A272C410B66B0CDA6852C9B288414624C2BAD4053816 |
DLL Exports:
| Function Name |
Ordinal |
Type |
DllRegisterServer |
3 |
Exported Function |
DllUnregisterServer |
4 |
Exported Function |
DllCanUnloadNow |
1 |
Exported Function |
DllGetClassObject |
2 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: signdrv.dll
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/71
- VirusTotal Link: https://www.virustotal.com/gui/file/5e2feedaeefebd5d7225159b056deac86803de5f8ebbb63157f8d8a9e0f90917/detection/
MIT License. Copyright (c) 2020-2021 Strontic.