drvinst.exe

  • File Path: C:\windows\SysWOW64\drvinst.exe
  • Description: Driver Installation Module

Hashes

Type Hash
MD5 455C8F5562AD5CD7254B041951A27A94
SHA1 22749609D613B53BB21F3E85C073242CA3E131AB
SHA256 65488A3C53A3C1F5569BEAB9CD3FE1683040DC9595BF698A1962E02694F4EE8C
SHA384 E467D245233E8604098FA5510412CE028CA705D95AC51898AFA2824E7962EC42BC64BB49C495A2B1570AAF77E37B6498
SHA512 01DA4B646C64209067D57C47D62766A48006C0221A0489039A3A2049495B3A01B1C1DB3C296E1F81F9DF2C2F121C338B0BBE81C40D80A655B441945BF256689F
SSDEEP 1536:gfcaZlvmbft4ZEy0lz7o5TqkpFvm3FoD2e1hfkRrccCTNleyjQW8pKeqg2WW:gfI1QE/WrrUoV1hcRjaIyEzpKeH2

Signature

  • Status: The file C:\windows\SysWOW64\drvinst.exe is not digitally signed. You cannot run this script on the current system. For more information about running scripts and setting execution policy, see about_Execution_Policies at http://go.microsoft.com/fwlink/?LinkID=135170
  • Serial: ``
  • Thumbprint: ``
  • Issuer:
  • Subject:

File Metadata

  • Original Filename: DrvInst.EXE.MUI
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 6.3.9600.16384 (winblue_rtm.130821-1623)
  • Product Version: 6.3.9600.16384
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.

Possible Misuse

The following table contains possible examples of drvinst.exe being misused. While drvinst.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
malware-ioc nukesped_lazarus .DrvInst.exe``{:.highlight .language-cmhg} © ESET 2014-2018

MIT License. Copyright (c) 2020-2021 Strontic.