dpapimig.exe
- File Path:
C:\WINDOWS\system32\dpapimig.exe
- Description: DPAPI Key Migration Wizard
Hashes
| Type |
Hash |
| MD5 |
1B00C120189F1EED63C32DCF9159F032 |
| SHA1 |
3CD6D337DFABFBF7A722E63ADA648712C47DAE64 |
| SHA256 |
0C8C7A8A3B884191ECA9A1378CE4F8CADA01A5EC87E09DE98351D03C71E080FF |
| SHA384 |
883773D889681FC05C9C08A2A9E48E379C4C33BDCC0EE9059A2D59994D5026B675D03C16E4971C11B170054B5B3C210B |
| SHA512 |
FA40F3758EF6C4A22DB3706FAEF1AEF5883A13D5B196BE3E9EACD9963DE586B93FE7C35C213AFA1D9ADC40692EC6AEE918CB44824FB45876832D7AB138A02023 |
| SSDEEP |
1536:eCyz/+XXfUMZE800l3uU1HIED1fCbWpygzU:er//mErSJj16bE |
| IMP |
5BACEA135D7122680523ECF81DEF2D51 |
| PESHA1 |
5941A50A6310CC0DB35F7FA66F7A1A74747A2036 |
| PE256 |
D439EE5C9124158B87BB813CDC509D3E53DF63439921CCFEA346CEEA03B14801 |
Runtime Data
Loaded Modules:
| Path |
| C:\WINDOWS\System32\ADVAPI32.dll |
| C:\WINDOWS\system32\dpapimig.exe |
| C:\WINDOWS\System32\KERNEL32.DLL |
| C:\WINDOWS\System32\KERNELBASE.dll |
| C:\WINDOWS\System32\msvcrt.dll |
| C:\WINDOWS\SYSTEM32\ntdll.dll |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED
- Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: dpapimig.exe.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.22000.1 (WinBuild.160101.0800)
- Product Version: 10.0.22000.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/74
- VirusTotal Link: https://www.virustotal.com/gui/file/0c8c7a8a3b884191eca9a1378ce4f8cada01a5ec87e09de98351d03c71e080ff/detection
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.