splunk-powershell.exe

  • File Path: C:\Program Files\SplunkUniversalForwarder\bin\splunk-powershell.exe

Hashes

Type Hash
MD5 DCA7324B23341BA6ACB505150D28B113
SHA1 A6E9BD36FF5278E7CCC063C8D126F7AA52F46425
SHA256 1FEE13D481BF43538ECD7860319E0295B3AC903C6C21551187AA3F7270CEB670
SHA384 2B2435ADF44024B89976922D2FAB2AE4BE9AC853886D9A6B2E77291BAF1BCFE69250E0BBC10F6554F5C52A55063183AE
SHA512 7BA2ACF4826BF80DDC9DF3F9BDAC2D0F509B4BA9177D37D6E3A2F54C4BAFB05309325035F2170545D6CE65F2CB3135462B6257FC7C5A1DE5AE714695549C5B28
SSDEEP 196608:ky6FOkB+/KFp/AFsbnl4gcYM/LPpUDNCupsusNKFJc/jXRfXE29:kbOZKFp7OgcYM/DpkpsumjJ9
IMP 1BDECF92268D3D3EF70015DDFEB0FFB9
PESHA1 9F4522C21C706CC7B465CDCD200350B225455143
PE256 F52798C9728B80438D5DAB983954740564EDBB423D886F2A9F70C033BCB668D1

Runtime Data

Usage (stderr):

wmain: SPLUNK_HOME must be set.  Stopping.
SPLUNK_HOME must be set.  Stopping.

Loaded Modules:

Path
C:\Program Files\SplunkUniversalForwarder\bin\splunk-powershell.exe
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\SYSTEM32\ntdll.dll

Signature

  • Status: Signature verified.
  • Serial: 014E132916D610BB301B22ABBD994616
  • Thumbprint: B8B4F0D3FD0571E184DEBB76A1F6DB73F30FA233
  • Issuer: CN=DigiCert EV Code Signing CA (SHA2), OU=www.digicert.com, O=DigiCert Inc, C=US
  • Subject: CN=”Splunk, Inc.”, O=”Splunk, Inc.”, L=San Francisco, S=California, C=US, SERIALNUMBER=4109614, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US

File Metadata

  • Original Filename:
  • Product Name:
  • Company Name:
  • File Version:
  • Product Version:
  • Language:
  • Legal Copyright:
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: Unknown

MIT License. Copyright (c) 2020-2021 Strontic.