MicrosoftEdgeSH.exe

  • File Path: C:\WINDOWS\system32\MicrosoftEdgeSH.exe
  • Description: Microsoft Edge Web Platform

Hashes

Type Hash
MD5 5AC4AA9129F88EDE6B7A72EFC56C9058
SHA1 BF512B5F0CFAC47E86A8DA55856B4420DCD6E987
SHA256 9E8A6C23CD45651027A74E154EB52901409B1F2916C02176ACCDBC722A26DD36
SHA384 07DD9B426F5EEBA419F4F9EA54D7F899BEFC85BC5A3C2CFBA1362445C6E6EFB2A991CD0C5CCB13CA744BF0EA40F8EDF2
SHA512 069FC3F1FA8B39712EB97A170A6BC42E38171F9704F103D1018B159996A462B87F13C341E162D46102ABFE6FCD0AD264EC99D671A53328E98D6E921D346686CA
SSDEEP 1536:si33kj/gVtpMEag3Id5QV/Y/tu+ynENk:Rnk7m7H+QV/YJyENk

Signature

  • Status: Signature verified.
  • Serial: 330000023241FB59996DCC4DFF000000000232
  • Thumbprint: FF82BC38E1DA5E596DF374C53E3617F7EDA36B06
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: MicrosoftEdgeSH.exe
  • Product Name: Microsoft Edge Web Platform
  • Company Name: Microsoft Corporation
  • File Version: 11.00.18362.1 (WinBuild.160101.0800)
  • Product Version: 11.00.18362.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.

Possible Misuse

The following table contains possible examples of MicrosoftEdgeSH.exe being misused. While MicrosoftEdgeSH.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
sigma win_susp_powershell_parent_process.yml - "MicrosoftEdgeSH.exe" DRL 1.0

MIT License. Copyright (c) 2020-2021 Strontic.