dpapimig.exe
- File Path:
C:\Windows\SysWOW64\dpapimig.exe
- Description: DPAPI Key Migration Wizard
Hashes
| Type |
Hash |
| MD5 |
D35833E98209E9267C4FE5C2C3E88AE9 |
| SHA1 |
2904327B36327B9E40AE4C4216E369D4A26F5191 |
| SHA256 |
63DE0E29608BA9702FC0996460271886D1F5C8809788BE035105BC317A47A5CD |
| SHA384 |
43F9E4F104308F8648ECA07BCD3B22E73BAE12C333D8E3407492D25EE0517237A0B14C17AF944C123F261D25E1970E3F |
| SHA512 |
CFDED83278DB13AD7A6D9738097E8743EDB7E2D738F45BF2DDA400588B931304F9D398A20D5239331AF9E8A4E2BE588820E5BFD7094500BC751279876A2DDC75 |
| SSDEEP |
1536:82tDEGcbBM8T2ZKpUZir/QxkvsKp00l3uU1HIED1fCbWpygzU:NeGcbBIKSK+SJj16bE |
| IMP |
DA3FB0A7EB3F23A19BB11529165AC3DA |
| PESHA1 |
80B34C7F899BC5FCAD40418AC0F51D8AEC7CC4C8 |
| PE256 |
558F820F8EAA1E9986115592F66CB6F6F2E91A66C489EAB6347B801A71D76808 |
Runtime Data
Loaded Modules:
| Path |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\wow64.dll |
| C:\Windows\System32\wow64cpu.dll |
| C:\Windows\System32\wow64win.dll |
| C:\Windows\SysWOW64\dpapimig.exe |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: dpapimig.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/75
- VirusTotal Link: https://www.virustotal.com/gui/file/63de0e29608ba9702fc0996460271886d1f5c8809788be035105bc317a47a5cd/detection
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.