MicrosoftEdgeUpdate.exe

  • File Path: C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
  • Description: Microsoft Edge Update

Screenshot

MicrosoftEdgeUpdate.exe

Hashes

Type Hash
MD5 F5801470145FE1B446E98E7709311271
SHA1 50E7EF28A2653C9A58031C1A97D86787572CD933
SHA256 A0628836960198F937F134E8A9C12A5EA38D682DA3DD5E026170DFBC3EAA992E
SHA384 3C5C5DD649D952C69C904DE8A15A7838ACEF3AE068ED8DBE1748E1DCD0B06627F7F9A442FF5D3B21DE5EB5F852D4EACC
SHA512 FB676C8390DE3C09A62D4CFB93F54CC0E3F5942DA7FFDA82673BDE4E18A21D689015C207D3B5DDC67FC6FA828913DD4934B18F993768A13316717B9777FBBD77
SSDEEP 3072:XWG4aT9LnWeEfp8+Oqwbzs7VpRXW/wTJT0+o4yvRb3u0I3yzkB+3+3dWoyN5pLWV:5teO9ipW4640u0I3yIB+aRMhI57
IMP 30AD68B9DC9737D8C720DD9284051ADD
PESHA1 B2EBEAA16A5FB4D483396C4E451FFBE2B4099489
PE256 BAAC00725E9928792BC80C8B067BCC95FFECB590A7B1D8DC32DD8504EC355E17

Runtime Data

Window Title:

Microsoft Edge Update Installer

Open Handles:

Path Type
(R-D) C:\Windows\Fonts\StaticCache.dat File
(R-D) C:\Windows\System32\en-US\wer.dll.mui File
(R-D) C:\Windows\SysWOW64\en-US\user32.dll.mui File
(RW-) C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.135.29 File
(RW-) C:\ProgramData\Microsoft\EdgeUpdate\Log\MicrosoftEdgeUpdate.log File
(RW-) C:\Windows File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_11b1e5df2ffd8627 File
\BaseNamedObjects__ComCatalogCache__ Section
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 Section
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 Section
\Sessions\1\BaseNamedObjects\windows_shell_global_counters Section
\Sessions\1\Windows\Theme64749523 Section
\Windows\Theme1120315852 Section

Loaded Modules:

Path
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll

Signature

  • Status: Signature verified.
  • Serial: 330000018A073733CF2048893C00000000018A
  • Thumbprint: 640386795F1D21244E7EA6E7A6E69E9C5B0A4F3E
  • Issuer: CN=Microsoft Code Signing PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: msedgeupdate.dll
  • Product Name: Microsoft Edge Update
  • Company Name: Microsoft Corporation
  • File Version: 1.3.135.29
  • Product Version: 1.3.135.29
  • Language: English (United States)
  • Legal Copyright: Copyright Microsoft Corporation
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/70
  • VirusTotal Link: https://www.virustotal.com/gui/file/a0628836960198f937f134e8a9c12a5ea38d682da3dd5e026170dfbc3eaa992e/detection/

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.135.29\MicrosoftEdgeUpdate.exe 100

Possible Misuse

The following table contains possible examples of MicrosoftEdgeUpdate.exe being misused. While MicrosoftEdgeUpdate.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
sigma win_susp_lsass_dump_generic.yml - '\MicrosoftEdgeUpdate.exe' DRL 1.0
sigma registry_event_asep_reg_keys_modification_currentversion_nt.yml Image\|endswith: '\MicrosoftEdgeUpdate.exe' DRL 1.0

MIT License. Copyright (c) 2020-2021 Strontic.