EDPCleanup.exe
- File Path:
C:\Windows\system32\EDPCleanup.exe - Description: EDP Cleanup
Hashes
| Type | Hash |
|---|---|
| MD5 | 92D3F4463E797E03B18496B33385745F |
| SHA1 | 93A04F93804211A3B10177C674F3D8F5CFB4BD4B |
| SHA256 | 520FB5B97E1CEE2865DA53405E346C55F62F0CD6B2E7741C1345F5693CEE0E92 |
| SHA384 | A0A75D92225EB498EACE67B04D437A18AE9CC459954AA8D259ADB133862561255E3550C1BFA04E8ADE1C30723BA57D69 |
| SHA512 | B8692F7D22CFC996C1062E4B09061C23E960224E28BA712A89166E7A7EE7E2D9D2AA90D2D4E5BC548C7D832E0FC65464E41D461188504BFF78943DBF9EA86CDD |
| SSDEEP | 3072:eEgphPw5x+oy3FuF/gCw9J8smY2f2q1XW/3NtHhj243cw:1ggi53QhgCg8smY2f2yXWDHhq43 |
| IMP | 3A5B90E227CE52C373C5E5BCF0550518 |
| PESHA1 | 499E03E7AF8B3AAA0FC96059B23000AD3A0DD707 |
| PE256 | FB6EA94EB4CB28B1B23FD9C10BC7F4DAF77D70F1111CF0CA5FEA274E770E99E4 |
Runtime Data
Loaded Modules:
| Path |
|---|
| C:\Windows\System32\advapi32.dll |
| C:\Windows\System32\bcrypt.dll |
| C:\Windows\System32\bcryptPrimitives.dll |
| C:\Windows\System32\combase.dll |
| C:\Windows\System32\CRYPT32.dll |
| C:\Windows\system32\DMCmnUtils.dll |
| C:\Windows\system32\EDPCleanup.exe |
| C:\Windows\system32\FirewallAPI.dll |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\System32\MSASN1.dll |
| C:\Windows\System32\msvcp_win.dll |
| C:\Windows\system32\msvcp110_win.dll |
| C:\Windows\System32\msvcrt.dll |
| C:\Windows\system32\netutils.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\OLEAUT32.dll |
| C:\Windows\system32\policymanager.dll |
| C:\Windows\System32\profapi.dll |
| C:\Windows\System32\RPCRT4.dll |
| C:\Windows\System32\sechost.dll |
| C:\Windows\system32\SspiCli.dll |
| C:\Windows\System32\ucrtbase.dll |
| C:\Windows\system32\wkscli.dll |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266 - Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840 - Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
File Metadata
- Original Filename: EDPCleanup.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.17763.1075 (WinBuild.160101.0800)
- Product Version: 10.0.17763.1075
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/72
- VirusTotal Link: https://www.virustotal.com/gui/file/520fb5b97e1cee2865da53405e346c55f62f0cd6b2e7741c1345f5693cee0e92/detection/
MIT License. Copyright (c) 2020-2021 Strontic.