RunLegacyCPLElevated.exe

  • File Path: C:\Windows\SysWOW64\RunLegacyCPLElevated.exe
  • Description: Run a legacy CPL elevated

Hashes

Type Hash
MD5 6C47B937FD6B890B201B451FE7B1FF76
SHA1 A73A58F87AC036B65E4E2ED68641EFB88B60625F
SHA256 D74C1659560E1244D9097A3F61DE5A588C4BACE7F5E6676B5D65BBED6FF1675C
SHA384 F968404D65C6834CCA3FCB5C8CD2845E796C82651D94050F4C18EA94F760319C40AB08B065C53D797F6075B206C25672
SHA512 35407747B8786844A4CAA7765D4FA23DD4003DE924797DD4C9B4118A132DAC6CEB787219BDCA8669BA406C887CE2B94A96B4198A93976388AE537659762D53DD
SSDEEP 768:gO7X3ZwhXXv4U5xYFhMty8jSGSkVhWakkbB5eT905WGnUKxHUe7n8jKBFFptX/7z:lKLy8jSxakkn6oYY0ewiP8
IMP 932B565960425EE7FA367E4081AFA26B
PESHA1 A33C2883742E4E4EFE25777B1607AA68BD993B7C
PE256 C85218211AB9A92832AA59158176A58BAB00CE1205AC1A28072F3C42CF3A0F9B

Signature

  • Status: Signature verified.
  • Serial: 33000001C422B2F79B793DACB20000000001C4
  • Thumbprint: AE9C1AE54763822EEC42474983D8B635116C8452
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: RunLegacyCPLElevated.EXE
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.17763.1 (WinBuild.160101.0800)
  • Product Version: 10.0.17763.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/69
  • VirusTotal Link: https://www.virustotal.com/gui/file/d74c1659560e1244d9097a3f61de5a588c4bace7f5e6676b5d65bbed6ff1675c/detection/

File Similarity (ssdeep match)

File Score
C:\Windows\system32\RunLegacyCPLElevated.exe 71
C:\Windows\system32\RunLegacyCPLElevated.exe 58
C:\Windows\system32\RunLegacyCPLElevated.exe 60
C:\windows\system32\RunLegacyCPLElevated.exe 72
C:\WINDOWS\system32\RunLegacyCPLElevated.exe 60
C:\Windows\system32\winver.exe 72
C:\Windows\system32\winver.exe 72
C:\Windows\system32\winver.exe 72
C:\WINDOWS\system32\winver.exe 71
C:\windows\system32\winver.exe 74
C:\Windows\SysWOW64\RunLegacyCPLElevated.exe 71
C:\windows\SysWOW64\RunLegacyCPLElevated.exe 72
C:\WINDOWS\SysWOW64\RunLegacyCPLElevated.exe 71
C:\Windows\SysWOW64\RunLegacyCPLElevated.exe 68
C:\windows\SysWOW64\winver.exe 71
C:\Windows\SysWOW64\winver.exe 80
C:\Windows\SysWOW64\winver.exe 75
C:\WINDOWS\SysWOW64\winver.exe 75
C:\Windows\SysWOW64\winver.exe 69

MIT License. Copyright (c) 2020-2021 Strontic.