dsregcmd.exe

  • File Path: C:\WINDOWS\system32\dsregcmd.exe
  • Description: DSREG commandline tool

Hashes

Type Hash
MD5 4602CA9FD6BE460A7309C7940A99C98C
SHA1 EE15E3D34D98DCE4214D8ECE2480B1E4D464C585
SHA256 0537182720EA005CE15FDDD92F426F1941719E844741BCACD2E52BD67FEA3690
SHA384 6728368687ADEEA2DAED45652AEB50BFEC4E816954847C390A1138397B5E934FD4825B30D2236109F477ED5A3D265CA9
SHA512 03D66A289DCE1D1DFC1C0EF2075E2E9A29FDE06D84746D652D454A41DA030578FBE4610009A4D62581BEFB55BD1E5BC1F3E9C7E09CD6FB8416BEDD244ABB297C
SSDEEP 12288:IHKWIUUBS2w5bhSp9PS7xs9Fe3izS/nUtPWTDFKKr2:gpIUUBS2w5bhSp9WW9FNSPUtPWTDIM2
IMP 0CD20E0C34FEEEED5ABF4A932E36871C
PESHA1 45EE0AD00032BA4C443C253B5F324E684E51E59D
PE256 3085B982070B4F34D1BD95C787E5C949EC055229E52905FF1DFE3090C69C7171

Runtime Data

Usage (stdout):

DSREGCMD switches
                        /? : Displays the help message for DSREGCMD
                   /status : Displays the device join status
               /status_old : Displays the device join status in old format
                     /join : Schedules and monitors the Autojoin task to Hybrid Join the device
                    /leave : Performs Hybrid Unjoin
                    /debug : Displays debug messages
               /refreshprt : Refreshes PRT in the CloudAP cache

Loaded Modules:

Path
C:\WINDOWS\system32\dsregcmd.exe
C:\WINDOWS\System32\KERNEL32.DLL
C:\WINDOWS\System32\KERNELBASE.dll
C:\WINDOWS\SYSTEM32\ntdll.dll

Signature

  • Status: Signature verified.
  • Serial: 33000002ED2C45E4C145CF48440000000002ED
  • Thumbprint: 312860D2047EB81F8F58C29FF19ECDB4C634CF6A
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: dsregcmd.exe.mui
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.22000.1 (WinBuild.160101.0800)
  • Product Version: 10.0.22000.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: 0/74
  • VirusTotal Link: https://www.virustotal.com/gui/file/0537182720ea005ce15fddd92f426f1941719e844741bcacd2e52bd67fea3690/detection

MIT License. Copyright (c) 2020-2021 Strontic.