dnscacheugc.exe

  • File Path: C:\Windows\system32\dnscacheugc.exe
  • Description: DNSCache Unattend Generic Command

Hashes

Type Hash
MD5 217CD6402D7413486D78340E89A48A64
SHA1 63D53FFD118BD6F0BECEBD2DBC95539816CB806A
SHA256 5131AB09AC9F309607A8D7DAE578AEDBFB5931C8A419187ABAC231350DB38CFD
SHA384 C093B08303F6C29D9CC423905E73F14BC29DF1D912404BD83A27A7AE116A934E9348BD5E7503C3E17E3B364D41644988
SHA512 E683A5F71FCC4DA1C96061065CBBCB16FBD71B1AD9E99ABA7104C4E6CD1BFE13A51908B7C3056DE8187C1357E5D887C1EEB30A889798F7A432CF9EFFC1E5260B
SSDEEP 384:xmP+UlYbpy8KVWnBEhYPz6ZAFRZMcbWlHZ61at/VYMXPryc1ObH9uosk4z/UI2fq:xezKb2Wn2/6FLeR+a99Zf/UI2faRW
IMP 5C561F392016B5D9832D2D36362CA7F0
PESHA1 28DEF1803B286597342506DEBC5F44F8D9B6C570
PE256 EB1B7E91E6D41A5B5554DD1EA7A072C2F3C67DF8858F80D6756315CEAA1C456C

Runtime Data

Loaded Modules:

Path
C:\Windows\System32\bcryptPrimitives.dll
C:\Windows\System32\combase.dll
C:\Windows\system32\dbgcore.DLL
C:\Windows\system32\dbghelp.dll
C:\Windows\system32\dnscacheugc.exe
C:\Windows\system32\IPHLPAPI.DLL
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\System32\msvcp_win.dll
C:\Windows\System32\msvcrt.dll
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\OLEAUT32.dll
C:\Windows\System32\RPCRT4.dll
C:\Windows\System32\ucrtbase.dll
C:\Windows\system32\wdscore.dll

Signature

  • Status: Signature verified.
  • Serial: 33000001C422B2F79B793DACB20000000001C4
  • Thumbprint: AE9C1AE54763822EEC42474983D8B635116C8452
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: dnscacheugc.exe
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.17763.1 (WinBuild.160101.0800)
  • Product Version: 10.0.17763.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: 0/70
  • VirusTotal Link: https://www.virustotal.com/gui/file/5131ab09ac9f309607a8d7dae578aedbfb5931c8a419187abac231350db38cfd/detection/

File Similarity (ssdeep match)

File Score
C:\Windows\system32\dnscacheugc.exe 30
C:\WINDOWS\system32\dnscacheugc.exe 69
C:\windows\system32\dnscacheugc.exe 27
C:\Windows\system32\dnscacheugc.exe 38

MIT License. Copyright (c) 2020-2021 Strontic.