home

wmi_hook_service.exe

WMI_Hook_Service

Micro-Star International CO., LTD.

It runs as a windows Service named “WMI_Hook_Service”.
Publisher:
MICRO-STAR INT'L,.LTD.  (signed by Micro-Star International CO., LTD.)

Product:
WMI_Hook_Service

Description:
MSI WMIHook Service

Version:
0.0.7.93

MD5:
fecb114a7382c8f5041884d42cb6caac

SHA-1:
29894d85fb5d61609d294c034c72cfc27e424075

SHA-256:
b6ae86c1c3d7dac6185782d039b91986790c34eb04eac567c24fc689c13d2e5c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 7:45:59 AM UTC  (today)

File size:
362 KB (370,736 bytes)

Product version:
0.0.7.93

Copyright:
MICRO-STAR(R) Copyright © 2012

Trademarks:
MICRO-STAR(R)

Original file name:
WMI_Hook_Service

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\quicksetting\quicksettingfn\wmi_hook_service.exe

Digital Signature
Signed by:
Micro-Star International CO., LTD.

Authority:
DigiCert Inc

Valid from:
7/21/2015 12:00:00 AM

Valid to:
6/15/2018 12:00:00 PM

Subject:
CN="Micro-Star International CO., LTD.", O="Micro-Star International CO., LTD.", L=New Taipei City, C=TW, PostalCode=235, STREET="No.69, Lide St", STREET=Zhonghe Dist, SERIALNUMBER=22178368, OID.1.3.6.1.4.1.311.60.2.1.3=TW, OID.2.5.4.15=Private Organization

Issuer:
CN=DigiCert EV Code Signing CA (SHA2), OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0D19E7F0F53E8E775D2974569818EBD9

File PE Metadata
Compilation timestamp:
9/14/2016 7:13:49 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

Entry address:
0xD97E

Entry point:
E8, D6, 08, 00, 00, E9, 4E, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 0F, 03, C1, 1B, C9, 0B, C1, 59, E9, 1A, FD, FF, FF, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 07, 03, C1, 1B, C9, 0B, C1, 59, E9, 04, FD, FF, FF, 55, 8B, EC, 6A, 00, FF, 15, E4, B1, 44, 00, FF, 75, 08, FF, 15, E0, B1, 44, 00, 68, 09, 04, 00, C0, FF, 15, 84, B0, 44, 00, 50, FF, 15, E8, B1, 44, 00, 5D, C3, 55, 8B, EC, 81, EC, 24, 03, 00, 00, 6A, 17, E8, E2, 89, 03, 00, 85, C0, 74, 05, 6A, 02, 59, CD, 29, A3...
 
[+]

Entropy:
6.5591

Code size:
293.5 KB (300,544 bytes)

Service
Display name:
WMI_Hook_Service

Description:
Hotkey function for Volume/Brightness/webcam/Turbo/Wireless adjusts.

Type:
Win32OwnProcess, InteractiveProcess

Depends on:
winmgmt


herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.