ZoomDocConverter.exe

  • File Path: C:\Program Files (x86)\Zoom\bin\ZoomDocConverter.exe
  • Description: Zoom
  • Comments: Zoom

Hashes

Type Hash
MD5 6FA586963D8EACAF21B0B3175E19E14A
SHA1 B151AD658825B84C6F1258DEAF991EE679CE9590
SHA256 BE1FE90EA6B78205305B97F662F952A943DCB8DD1A2F93A3F2018DACC6915D9C
SHA384 248C6C8B6340E136F18D3255C20E60C546406547882B3358E19C84F8C7842B03A9CDE95795F5B6E68D74602455E3328E
SHA512 3D89BE0B431A73A3E37C840CB98B65CD170AF9940C6007B5782AC9F3690058EBB0CFA9CD400C590B07EB65359796A740C077DADDEE248FA70F3AB909FEDDDE3C
SSDEEP 3072:OeXq7zbi3UKs4JVzTzZE1onsmlp3vKpRB0q8:OIdkKs4JCIvCpRB0Z
IMP E9416D502A5378876423A445B5C70046
PESHA1 CEA4096BC839CC5E2D362BB2A5AC055C7536967F
PE256 CA261381AD52ECF57E3883D1C35E7D387DA0379FA309FB55E903BEF1B61610CA

Runtime Data

Open Handles:

Path Type
(R-D) C:\Windows\System32\en-US\crypt32.dll.mui File
(RW-) C:\Users\user\AppData\Roaming\Zoom\appsafecheck.txt File
(RW-) C:\Windows File
(RW-) C:\xCyclopedia File
\BaseNamedObjects__ComCatalogCache__ Section
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 Section
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 Section
\Sessions\1\BaseNamedObjects\891d5faf-cca6-4d20-b554-670fc7538ec6 Section
\Sessions\1\BaseNamedObjects\windows_shell_global_counters Section

Loaded Modules:

Path
C:\Program Files (x86)\Zoom\bin\ZoomDocConverter.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll

Signature

  • Status: Signature verified.
  • Serial: 0510C6B2FF7AB71C786EF572239B1243
  • Thumbprint: 0F9ADA46756C17EFFFD467D10654E2A766566CB3
  • Issuer: CN=DigiCert EV Code Signing CA (SHA2), OU=www.digicert.com, O=DigiCert Inc, C=US
  • Subject: CN=”Zoom Video Communications, Inc.”, O=”Zoom Video Communications, Inc.”, L=San Jose, S=California, C=US, SERIALNUMBER=4969967, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US

File Metadata

  • Original Filename: Zoom
  • Product Name: Zoom
  • Company Name: Zoom Video Communications, Inc.
  • File Version: 5,3,52670,0921
  • Product Version: 5,3,52670,0921
  • Language: English (United States)
  • Legal Copyright: Zoom Video Communications, Inc. All rights reserved.
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/70
  • VirusTotal Link: https://www.virustotal.com/gui/file/be1fe90ea6b78205305b97f662f952a943dcb8dd1a2f93a3f2018dacc6915d9c/detection/

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\Zoom\bin\Zoom.exe 36
C:\Program Files (x86)\Zoom\bin\Zoom.exe 40
C:\program files (x86)\Zoom\bin\Zoom.exe 33
C:\Program Files (x86)\Zoom\bin\Zoom.exe 50
C:\Program Files (x86)\Zoom\bin\ZoomDocConverter.exe 38
C:\program files (x86)\Zoom\bin\ZoomDocConverter.exe 49
C:\Program Files (x86)\Zoom\bin\ZoomDocConverter.exe 47
C:\Program Files (x86)\Zoom\bin\zTscoder.exe 33
C:\Program Files (x86)\Zoom\bin\zTscoder.exe 38
C:\program files (x86)\Zoom\bin\zTscoder.exe 35
C:\Program Files (x86)\Zoom\bin\zTscoder.exe 35

MIT License. Copyright (c) 2020-2021 Strontic.