MicrosoftEdge.exe
- File Path:
C:\Users\user\AppData\Local\Microsoft\WindowsApps\MicrosoftEdge.exe
Hashes
Type | Hash
– | –
MD5 |
SHA1 |
SHA256 |
SHA384 |
SHA512 |
SSDEEP |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266 - Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840 - Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
File Metadata
- Original Filename:
- Product Name:
- Company Name:
- File Version:
- Product Version:
- Language:
- Legal Copyright:
File Scan
- VirusTotal Detections: Unknown
Possible Misuse
The following table contains possible examples of MicrosoftEdge.exe being misused. While MicrosoftEdge.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.
| Source | Source File | Example | License |
|---|---|---|---|
| sigma | file_event_win_mal_vhd_download.yml | - microsoftedge.exe |
DRL 1.0 |
| sigma | image_load_abusing_azure_browser_sso.yml | - '\MicrosoftEdge.exe' |
DRL 1.0 |
| sigma | proc_creation_win_susp_powershell_parent_process.yml | - '\microsoftedge.exe' |
DRL 1.0 |
| sigma | sysmon_process_hollowing.yml | - '\MicrosoftEdge.exe' |
DRL 1.0 |
| atomic-red-team | T1176.md | 1. Navigate to https://microsoftedge.microsoft.com/addons/detail/fjnehcbecaggobjholekjijaaekbnlgj | MIT License. © 2018 Red Canary |
MIT License. Copyright (c) 2020-2021 Strontic.