AddInProcess.exe

  • File Path: C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\AddInProcess.exe
  • Description: AddInProcess.exe
  • Comments: Flavor=Retail

Hashes

Type Hash
MD5 B67A67922F2BF068F52C8128459309B6
SHA1 AD9383311813623752B24515049927A2BA9BFFA7
SHA256 92AA7689723FD08B61CE396B9BC27893385D6E1578917EBFC22F05C8BC30A188
SHA384 97E84752B07FEDC0CBF2D3F1FA4A586F0D321BD3002C1599C690A267C4B616AE79CE87D628EF31BBD34511897B2DA2A2
SHA512 0080A95F4F144AC41A0167F2CC2413F852CBDFEB866DC4761CBC964F035A5EECD71E445B4CE8792359938E9F6C0A871532CE9809D7C0D8E59DC2D6651BB06013
SSDEEP 384:WvfIQRb67dOwRkMKJ9Yl6dnPU3SERztmbqCJstdMardz/JikPZ+UsPZlQWesn5fr:W3IX7dC6Iq8IMvQIWzM985HDk
IMP F34D5F2D4577ED6D9CEEC516C1F5A744
PESHA1 355C7B4EC2E10988524108AAEB8408438A63E724
PE256 21E5D5889CCAD13D5AC3920041586F9C95CE3BF941821C8C54A3ECB18AFF5308

Runtime Data

Loaded Modules:

Path
C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\AddInProcess.exe
C:\WINDOWS\System32\KERNEL32.dll
C:\WINDOWS\System32\KERNELBASE.dll
C:\WINDOWS\SYSTEM32\MSCOREE.DLL
C:\WINDOWS\SYSTEM32\ntdll.dll

Signature

  • Status: Signature verified.
  • Serial: 33000002ED2C45E4C145CF48440000000002ED
  • Thumbprint: 312860D2047EB81F8F58C29FF19ECDB4C634CF6A
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: AddInProcess.exe
  • Product Name: Microsoft .NET Framework
  • Company Name: Microsoft Corporation
  • File Version: 4.8.4161.0 built by: NET48REL1
  • Product Version: 4.8.4161.0
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/72
  • VirusTotal Link: https://www.virustotal.com/gui/file/92aa7689723fd08b61ce396b9bc27893385d6e1578917ebfc22f05c8bc30a188/detection

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\Microsoft SDKs\Windows\v10.0A\bin\NETFX 4.8 Tools\StoreAdm.exe 65
C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework.NETFramework\v4.8\System.Web.ApplicationServices.dll 44
C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework.NETFramework\v4.8\System.Web.DynamicData.Design.dll 65
C:\Windows\Microsoft.NET\Framework\v4.0.30319\AddInProcess.exe 88
C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\AddInProcess32.exe 71
C:\Windows\Microsoft.NET\Framework\v4.0.30319\AddInProcess32.exe 71
C:\Windows\Microsoft.NET\Framework\v4.0.30319\AddInUtil.exe 69
C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\AddInUtil.exe 69
C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_regbrowsers.exe 65
C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_regbrowsers.exe 65
C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\InstallUtil.exe 65
C:\Windows\Microsoft.NET\Framework\v4.0.30319\InstallUtil.exe 63
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\AddInProcess.exe 88
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\AddInProcess.exe 100
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\AddInProcess32.exe 71
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\AddInProcess32.exe 71
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\AddInUtil.exe 69
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\AddInUtil.exe 69
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_regbrowsers.exe 63
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_regbrowsers.exe 61
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\InstallUtil.exe 63
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\InstallUtil.exe 63

MIT License. Copyright (c) 2020-2021 Strontic.