ucsvc.exe
- File Path:
C:\WINDOWS\system32\ucsvc.exe
- Description: Boot File Servicing Utility
Hashes
| Type |
Hash |
| MD5 |
E806A23FE3CD4D86F21AE0BD825C79DD |
| SHA1 |
47F762757D9AED5944B9CFB10749366546A1F810 |
| SHA256 |
482B3E17295C2E27B5A38F0A31CE760EAEB12512EA05D68587A38E11D6125796 |
| SHA384 |
36B540098C4E10E85D2F94F4EE73AB10278B8871553FC6D4B150C6EB124CFBE813ACF418730B7CF5A3C65DDE2B28689E |
| SHA512 |
F5F025C0D1D3F7AC3DDBE71D0BCDAF65B6FBDE4D7A8360151850BDD58EF38B4568000A45B9BF2E156F77C16627D53D61DA7D07D98FD1BDE38CF1F5894658244D |
| SSDEEP |
384:u3wuzSlX+aPbR7S+4AgRzwSqMP8B4gppJP9B0XmsJWGnWwDBRJMd8ImlfE:dVX3RSTM4gZ9BIHF1P8 |
| IMP |
72B2207C8711E5364C1178AF5BE1B93A |
| PESHA1 |
E6858D90AA2F14530897D5A0AE362C428F39D3D0 |
| PE256 |
B2CC18B5858FBE0842D7FEB4B3DA3738941E642E682E037358C4AC55A95DEB7F |
Runtime Data
Loaded Modules:
| Path |
| C:\WINDOWS\System32\KERNEL32.DLL |
| C:\WINDOWS\System32\KERNELBASE.dll |
| C:\WINDOWS\SYSTEM32\ntdll.dll |
| C:\WINDOWS\System32\ucrtbase.dll |
| C:\WINDOWS\system32\ucsvc.exe |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED
- Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: bfsvc.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.22000.1 (WinBuild.160101.0800)
- Product Version: 10.0.22000.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/71
- VirusTotal Link: https://www.virustotal.com/gui/file/482b3e17295c2e27b5a38f0a31ce760eaeb12512ea05d68587a38e11d6125796/detection
MIT License. Copyright (c) 2020-2021 Strontic.