wbemcntl.dll
- File Path:
C:\Windows\system32\wbem\wbemcntl.dll
- Description: WMI Control
Hashes
| Type |
Hash |
| MD5 |
95C83B0598AF43CCD050C287C7BC915D |
| SHA1 |
8B733FE2F17EED604FCEC569EC0FA07D203E6BF0 |
| SHA256 |
761220A80C6B3D80894634A214C8DF219D5FF9FCAD8C66B5FDC80A12C925F3EA |
| SHA384 |
6F9FD7A86476E0330F77008C98D6E735BB751B1E21ECFCA2DED6AE1B1CC9654902C75538DBBB3E71C5C5B20336869D08 |
| SHA512 |
28D1E065B0AD7D12F6485515C12FCABCDD4EFF81D073BB486C13DDA86235661F4845527739F47589364BADD7AA7C46DA671EA67147B0494FD720BF333297E81E |
| SSDEEP |
6144:sK9u1u61qf2zdBtAOeWnl9DTVyqoDePv0hJM4v1W:5U/zdBaONnDK8c7M48 |
| IMP |
B92374CC27499A517533612210025C59 |
| PESHA1 |
5AE7326ED8B943267DC063109456D3882469FA5F |
| PE256 |
4E21855D6F2B103B098C808B33E6AD5DA79E792CA47F57B263AE7E76D55B1D95 |
DLL Exports:
| Function Name |
Ordinal |
Type |
DllRegisterServer |
3 |
Exported Function |
DllUnregisterServer |
4 |
Exported Function |
DllCanUnloadNow |
1 |
Exported Function |
DllGetClassObject |
2 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
330000026551AE1BBD005CBFBD000000000265
- Thumbprint:
E168609353F30FF2373157B4EB8CD519D07A2BFF
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: wbemcntl.dll.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/72
- VirusTotal Link: https://www.virustotal.com/gui/file/761220a80c6b3d80894634a214c8df219d5ff9fcad8c66b5fdc80a12c925f3ea/detection/
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.