ResetEngine.exe

File Path: C:\Windows\system32\ResetEngine.exe
Description: Push-Button Reset Engine

Hashes

Type	Hash
MD5	`81981508054235A7A96A7986D68166B3`
SHA1	`AB7C8F847857D0B4B7DEE25D8C2CC943536AF63A`
SHA256	`922C159E1669313D7DD1369445ACB65677F4E0E3DC7ABF51F23027F1AB7B7A6F`
SHA384	`B8BB48AF4B85B83552B978CC6196D9F1C585B0ACA98449F83EC8927D92E0E5A3FBACA2C1FDBB09CDE1BE5D9AE8E10237`
SHA512	`E6D2E546F599D6E1C9BF37F33C891445CB17E1641A64B47A429FF78F6067FE86B7A6723BE423697FBA30BF253FAB5B55DD3B3FD4A258ED1ED34BAEAED375D9FE`
SSDEEP	`384:M3lfHLUNi4m1XgtiACsIWBeWmDBRJA/JIrlpd:SrCSgwhsnm1PAc`
IMP	`D1CCC9D0A0240603DC3279F82F80F8D3`
PESHA1	`E4AC7121C41D38DDEF61B3754A22F3F2DEB187F8`
PE256	`3F5FCD486778229969817B941DA1EC879329A894E12FD6FA38B77D146259748F`

Runtime Data

Loaded Modules:

Path
C:\Windows\System32\GDI32.dll
C:\Windows\System32\gdi32full.dll
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\System32\msvcp_win.dll
C:\Windows\System32\msvcrt.dll
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\system32\ResetEngine.exe
C:\Windows\System32\SHELL32.dll
C:\Windows\System32\ucrtbase.dll
C:\Windows\System32\USER32.dll
C:\Windows\System32\win32u.dll

Signature

Status: Signature verified.
Serial: 33000002EC6579AD1E670890130000000002EC
Thumbprint: F7C2F2C96A328C13CDA8CDB57B715BDEA2CBD1D9
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: RESETENGINE.EXE
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 10.0.19041.1320 (WinBuild.160101.0800)
Product Version: 10.0.19041.1320
Language: English (United States)
Legal Copyright: Microsoft Corporation. All rights reserved.
Machine Type: 64-bit

File Scan

VirusTotal Detections: 0/73
VirusTotal Link: https://www.virustotal.com/gui/file/922c159e1669313d7dd1369445acb65677f4e0e3dc7abf51f23027f1ab7b7a6f/detection

File Similarity (ssdeep match)

File	Score
C:\Windows\system32\ResetEngine.exe	54
C:\Windows\system32\ResetEngine.exe	52
C:\Windows\system32\ResetEngine.exe	58

MIT License. Copyright (c) 2020-2021 Strontic.