upnpcont.exe
- File Path:
C:\WINDOWS\system32\upnpcont.exe
- Description: UPnP Device Host Container
Hashes
| Type |
Hash |
| MD5 |
1C88BB6888B6E70D225782C861F094FF |
| SHA1 |
78817491469AD5E1F55795167ADA90CCF1C59EF7 |
| SHA256 |
FA0CF307C04041EC26EC31F1A70F988904EDE7176E0CC5256FB9A3A2B91A22AF |
| SHA384 |
4D6AE7E1E476DB5F554369D069EFE1E73CEF818CA6C3ACFB051AF156412EE8C47ED7466A20E82A861ED5028995FD2CCC |
| SHA512 |
363C0D151E14B3AE42C046FF9C1891809BB840980CA07E11995697D7E77838598E507944C8B6E6D4DBB868E295635CE4475E8A5136A142280DAFFD7A17132842 |
| SSDEEP |
768:TW1ExzFYxz/d8zSl+h8N0HNpk3sWJT+bLvmITMJ2JZzZqg0LyUh5:jNGxzV8zSl+g0Hk3s9LrwwzZlkp |
| IMP |
7B81D592E2E0E57EBD2E87234270AF60 |
| PESHA1 |
83E9663F85A92BE7F779F437FFAA4A398EA68568 |
| PE256 |
B96928CE4C6B716043E006C3919E56107A57D4AD038BC5CB2DF1C2AC640604BC |
Runtime Data
Open Handles:
| Path |
Type |
| (RW-) C:\Windows\System32 |
File |
| \BaseNamedObjects__ComCatalogCache__ |
Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000001.db |
Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000001.db |
Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*cversions.2.ro |
Section |
| \Sessions\2\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 |
Section |
| \Sessions\2\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 |
Section |
Loaded Modules:
| Path |
| C:\WINDOWS\System32\KERNEL32.DLL |
| C:\WINDOWS\System32\KERNELBASE.dll |
| C:\WINDOWS\SYSTEM32\ntdll.dll |
| C:\WINDOWS\system32\upnpcont.exe |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED
- Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: upnpcont.dll
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.22000.1 (WinBuild.160101.0800)
- Product Version: 10.0.22000.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/73
- VirusTotal Link: https://www.virustotal.com/gui/file/fa0cf307c04041ec26ec31f1a70f988904ede7176e0cc5256fb9a3a2b91a22af/detection
MIT License. Copyright (c) 2020-2021 Strontic.