dxdiag.exe

  • File Path: C:\WINDOWS\system32\dxdiag.exe
  • Description: Microsoft DirectX Diagnostic Tool

Screenshot

dxdiag.exe

Hashes

Type Hash
MD5 2BDFB0F139AA26C810C5DAD102D25A5F
SHA1 357620045AB361245B5CDBA0702C65EB44EC64E5
SHA256 BC1AC87E76D9F205E7B82481BACB79EED1A1ADF48C95EDA07A60418ED24A47DA
SHA384 122199C7C54D79E64A5849185BD1D97F76FAF0845F7C8613C2E57415E72CBD9111122B1F4C9730837EA6C1CB0DD6ED9E
SHA512 F913B58BD6AB2AD4D0B32C0E7B44AFC8285298763B0C5EE9CD5D249C0BE9B55EED05B6778A97C7838CF177C25549C1C09D8A2B95E14CF8F16BC4C0248A3F9602
SSDEEP 6144:QEjHaenqLLSSSQj9lm3KPMaCB3+6ScD4pf9dYGk7tK4KiUa13P:QEjP03b0u6FU59dYgiUIP

Signature

  • Status: Signature verified.
  • Serial: 330000023241FB59996DCC4DFF000000000232
  • Thumbprint: FF82BC38E1DA5E596DF374C53E3617F7EDA36B06
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: dxdiag.exe.mui
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.18362.1 (WinBuild.160101.0800)
  • Product Version: 10.0.18362.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.

Possible Misuse

The following table contains possible examples of dxdiag.exe being misused. While dxdiag.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
sigma registry_event_persistence_search_order.yml Image: 'C:\WINDOWS\SYSTEM32\dxdiag.exe' DRL 1.0

MIT License. Copyright (c) 2020-2021 Strontic.