weretw.dll
- File Path:
C:\Windows\system32\weretw.dll
- Description: WERETW.DLL
Hashes
| Type |
Hash |
| MD5 |
065E8E568FCE15ACCB6BBDB88DE9E7B5 |
| SHA1 |
C41FCCE8E54DE91837FF033B3C2E9402B64E9A33 |
| SHA256 |
1AB9D1945F4A2C4DE0AEE0F3BA6107A9DA96FD446F24D8FBB2AA56BBADD8D478 |
| SHA384 |
68192B283CF6E9E1CB80290537C10BD203950D42455D0A88AAA6ED598ADB4B3BE3AF87F10D5E97123784AA36373F15F1 |
| SHA512 |
FE6BEA0A141ABD6FE12CC3E04C86A2D00F090A70B5A4D0F3B6A2B08943AECA98F3033963A76B26D9BA39EEDC1E59B12636553A58DDCFF8DB4ACCE6CEEFD359B2 |
| SSDEEP |
3072:vnF0KeL7espYPBELwo0QDhBrUFoKkhmT92gikLMNj7QlzG61Vp1/WWqb72Zwg2b9:LmhpYZawcjhKkh+iMMNj7Cz35qbSK66 |
| IMP |
239949D466DE1F627DF2F5B933758D33 |
| PESHA1 |
AD698BC4F4EF1B1A92D2AE1EFC47927CEBAE4C41 |
| PE256 |
F1E8731C24FDFB7FCD50DA58AF3643E4749A345EDBA9E7FA444E05261114FAC1 |
DLL Exports:
| Function Name |
Ordinal |
Type |
WerMergeEtlEx |
2 |
Exported Function |
WerMergeEtl |
1 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: WERETW.DLL
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.423 (WinBuild.160101.0800)
- Product Version: 10.0.19041.423
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/66
- VirusTotal Link: https://www.virustotal.com/gui/file/1ab9d1945f4a2c4de0aee0f3ba6107a9da96fd446f24d8fbb2aa56bbadd8d478/detection/
MIT License. Copyright (c) 2020-2021 Strontic.