RdpSaUacHelper.exe
- File Path:
C:\Windows\SysWOW64\RdpSaUacHelper.exe
- Description: RDP Session Agent UAC Helper
Hashes
| Type |
Hash |
| MD5 |
95309FCD8BDC2AB2C45590BBA26BF5E1 |
| SHA1 |
1B6B5E947E682806FDE6FC66D2926FA2604BF92E |
| SHA256 |
CBD3DBD850289F1888B4DC6884F0E5474063FE4D57E9F8BEF0B325F76284BBD6 |
| SHA384 |
794DBE36DE06E0B5A44A8F1E8D0CAEA83CE7393667852E10352416AAC6FBA41E8D2C48FB5B4A18909ADEAD9BFFC98A5B |
| SHA512 |
E208882F22230FBFC82925FAB5DF65C1579AD0BD1AB2860BB5C6E803844D7C7DC5772D93B41DF9A468A6C35800B2789E765EE8292F90D79BC88DE460CD7691A5 |
| SSDEEP |
384:oQuhI4l7w+OVe6LkiOiGamZnWHiVBf7tkZky7fumIQcJGnZ/87YWWgWmNbx:opl7w+mjAiOYmZSiVBTg7k7GnZ/87MU |
| IMP |
77810F2FCFA5731B3F60CA5339B7BD2D |
| PESHA1 |
6D55078667166FA302956560EE9B7988A0A40C34 |
| PE256 |
567FDF154BD16964992BC9FB379A5381C46B530664A1C25AF79E69A7236611CB |
Runtime Data
Loaded Modules:
| Path |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\wow64.dll |
| C:\Windows\System32\wow64cpu.dll |
| C:\Windows\System32\wow64win.dll |
| C:\Windows\SysWOW64\RdpSaUacHelper.exe |
Signature
- Status: Signature verified.
- Serial:
33000001C422B2F79B793DACB20000000001C4
- Thumbprint:
AE9C1AE54763822EEC42474983D8B635116C8452
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: RdpSaUacHelper.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.17763.1 (WinBuild.160101.0800)
- Product Version: 10.0.17763.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/69
- VirusTotal Link: https://www.virustotal.com/gui/file/cbd3dbd850289f1888b4dc6884f0e5474063fe4d57e9f8bef0b325f76284bbd6/detection/
MIT License. Copyright (c) 2020-2021 Strontic.