wininitext.dll

File Path: C:\Windows\system32\wininitext.dll
Description: WinInit Utility Extension DLL

Hashes

Type	Hash
MD5	`A8D1B0B641D27464E207B03A898DCF5C`
SHA1	`FC3B8BC8F218845C96966461011E032DA2F3D011`
SHA256	`162E0A05F9F6BCF118EBB4CB37E82CE8A9AEB0810F153F9C5D0D1F1C1F6A2BCF`
SHA384	`BA72B7ED68D1A019CCA18350EF5962BAB0A689F562EF1AA542D8920397CC1C3A8D3D708F6F2F39EEB2A813C1C4DF3BC7`
SHA512	`6CB90E4E365A50B183E53436BAA89C2176BC63EDA0A2A4B07512C6F1F5E816F60141A42E0002A08E032D15F77D1E1B24C8BFC4127FD00CD9940435B4AFF38A1B`
SSDEEP	`768:sfKiNhDQvtbN9QVNg0il/2+fcjts4MP0w/QePI1PImLY:sfKiNhDQqaBl/bfEtrM8w/QeIPBLY`
IMP	`FE0759C21B6C6AED369FE31C269210A3`
PESHA1	`6145502531295DA33E2742969C57DC06369A40B2`
PE256	`89B456041B93F376B9257516F63308C522031F595BFA49BD66C637C2786AD127`

DLL Exports:

Function Name	Ordinal	Type
`UIStartupWorker`	4	Exported Function
`WaitForWinstationShutdown`	5	Exported Function
`WinStationSystemShutdownStartedWorker`	6	Exported Function
`GetLoggedOnUserCount`	1	Exported Function
`PrimaryTerminalAndHookWorker`	2	Exported Function
`StartLoadingFontsWorker`	3	Exported Function

Signature

Status: Signature verified.
Serial: 3300000266BD1580EFA75CD6D3000000000266
Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: WinInitExt.DLL
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 10.0.19041.1 (WinBuild.160101.0800)
Product Version: 10.0.19041.1
Language: English (United States)
Legal Copyright: Microsoft Corporation. All rights reserved.
Machine Type: 64-bit

File Scan

VirusTotal Detections: 0/72
VirusTotal Link: https://www.virustotal.com/gui/file/162e0a05f9f6bcf118ebb4cb37e82ce8a9aeb0810f153f9c5d0d1f1c1f6a2bcf/detection/

MIT License. Copyright (c) 2020-2021 Strontic.