IMEPADSV.EXE
- File Path:
C:\Windows\SysWOW64\IME\shared\IMEPADSV.EXE
- Description: Microsoft IME
Hashes
| Type |
Hash |
| MD5 |
B48A520DC5BB6B97E81849B9AA55692C |
| SHA1 |
6AB370EAD3E40E2EB53761C010E68D4B264AE855 |
| SHA256 |
60C213702C2DE2C624DC1171748AFFAA6A948114A4B9BAE1E59067C0F650FBB9 |
| SHA384 |
D987B459AA797820CFFA9D3D1AE7A3985FF2AC6F3C2BA0FF66C87B14856E58A5ACDD112F388BCCB730B072A7EAEDC106 |
| SHA512 |
1DD4DC823B0E3E32F4878DE2748E8DF9DECC0F1F77849E6BA62F08F51617F0F2E2EEB4D19F105E51A3FD20533F5B76351D0E640D90D0170D42A303A510D1396B |
| SSDEEP |
6144:P5wo3arm74fx1h5GwwldmLmMSZlbbUz13:xwo3ay74fz3DwldONiK |
| IMP |
DBD22BB5C8E43B5CF495BCD15E726C8B |
| PESHA1 |
607C0BC19F22E56E55ACA028ABF32B8F8C26C819 |
| PE256 |
44A22C71D690E0E868C0F88827AB96B1FB85F80AF4BEE90593F53F262F26EABA |
Runtime Data
Loaded Modules:
| Path |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\wow64.dll |
| C:\Windows\System32\wow64cpu.dll |
| C:\Windows\System32\wow64win.dll |
| C:\Windows\SysWOW64\IME\shared\IMEPADSV.EXE |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: Microsoft IME
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.17763.1075 (WinBuild.160101.0800)
- Product Version: 10.0.17763.1075
- Language: Language Neutral
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/73
- VirusTotal Link: https://www.virustotal.com/gui/file/60c213702c2de2c624dc1171748affaa6a948114a4b9bae1e59067c0f650fbb9/detection/
MIT License. Copyright (c) 2020-2021 Strontic.