WSCollect.exe
- File Path:
C:\Windows\system32\WSCollect.exe - Description: This tool collects Windows Store log files
Hashes
| Type | Hash |
|---|---|
| MD5 | 4F67D9A480038D06463A43AE66880245 |
| SHA1 | 3AB88A5F262FD71355057DAD3E34B8E0FDFF52EE |
| SHA256 | 7EA319D8DFC2593CAC903A9D05F5F9AE14D0C44ED027C290C62651EBC6B80FE6 |
| SHA384 | DFB93EFF43135C5505E61D524DD5B0A15EB6F79E40C68F0EF30126F5780BE1D9F5688FC45182E2061AD45D4B3F9FF058 |
| SHA512 | 1BF7022E4F51D1390586DB88259884619C0A9E276E66E8BA079F2CABA4985F946E20E25B49C744FBE60B2D260F21F6CEE2E80326FB63A17296AEA4CDF03EC38A |
| SSDEEP | 768:gSfVcsHPYfMr+I4vyIY1JrSpCNvzOTSOAVDNsn4FOBkStBW1:4UCI4qn1SWUSOAVAg0Y1 |
Runtime Data
Usage (stdout):
Error: 0x8007007b
Child Processes:
conhost.exe
Signature
- Status: Signature verified.
- Serial:
33000000BCE120FDD27CC8EE930000000000BC - Thumbprint:
E85459B23C232DB3CB94C7A56D47678F58E8E51E - Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
File Metadata
- Original Filename: WSCollect.exe.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.14393.0 (rs1_release.160715-1616)
- Product Version: 10.0.14393.0
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.