OOBENetworkConnectionFlow.exe

File Path: C:\WINDOWS\SystemApps\Microsoft.Windows.OOBENetworkConnectionFlow_cw5n1h2txyewy\OOBENetworkConnectionFlow.exe
Description: OOBE Network Connection Flow

Hashes

Type	Hash
MD5	`823E4DEF469E572C9C3DC2DC332441E1`
SHA1	`21137927CE2C7B36512B6D2CECB0611810193CF6`
SHA256	`FC33F1C5796EB5FCE36E1E8874A07F6EA6A0D30E08C3725DE8BF5074FBF79676`
SHA384	`6A820796ECC670A8561563D5A07227CB4CC820FF2987EAFCC1AB5802EBF8D53FF87AF1A6A135721E02B63A1A06DBD2DC`
SHA512	`81C7437BBD5B4571826C207A416A4F748BC2DA856217A9E59303848454EDD7BC0D9684D12EEDA9779CCDD343A678F924DFDF6814BF1F3C180975FACB5E62E855`
SSDEEP	`12288:kwE3VhqnqYJd2LvZgHd3doyOaaByvHMrzOsCKqqF3up7Y28MaEC32Lej63YcowXS:7E3OT+HpPd4ktzr7cA`
IMP	`54DF9740C8119D641CC8BCFA21DB2029`
PESHA1	`189C8E73D03606D72EB62A59B28B0D300A297E04`
PE256	`CA474B7361F6142B201A58A1057C75980F57C5F62D1B6364418CB30649823366`

Runtime Data

Child Processes:

OOBENetworkConnectionFlow.exe WerFault.exe

Loaded Modules:

Path
C:\WINDOWS\System32\combase.dll
C:\WINDOWS\System32\KERNEL32.DLL
C:\WINDOWS\System32\KERNELBASE.dll
C:\WINDOWS\SYSTEM32\ntdll.dll
C:\WINDOWS\System32\ucrtbase.dll
C:\WINDOWS\SystemApps\Microsoft.Windows.OOBENetworkConnectionFlow_cw5n1h2txyewy\OOBENetworkConnectionFlow.exe

Signature

Status: Signature verified.
Serial: 33000002ED2C45E4C145CF48440000000002ED
Thumbprint: 312860D2047EB81F8F58C29FF19ECDB4C634CF6A
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: OOBENetworkConnectionFlow.exe
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 10.0.22000.120 (WinBuild.160101.0800)
Product Version: 10.0.22000.120
Language: English (United States)
Legal Copyright: Microsoft Corporation. All rights reserved.
Machine Type: 64-bit

File Scan

VirusTotal Detections: Unknown

MIT License. Copyright (c) 2020-2021 Strontic.