dxdiag.exe

  • File Path: C:\WINDOWS\SysWOW64\dxdiag.exe
  • Description: Microsoft DirectX Diagnostic Tool

Screenshot

dxdiag.exe

Hashes

Type Hash
MD5 CB710AD8D6554744CDF22BDCCF2E039D
SHA1 6B4A0086C9BFCCA8EA1129CB4AB7E2568A3B1A61
SHA256 5DE783D53E91033C9C1822649C8A42BE856D5E49D07BB1A087EAC5B5711CB96D
SHA384 FD01A1B7D0F76597E49AF4877B981214A32143A3BC70B188936F4BC2EEA8D54624F44B887C1F1E1CB085A562142CF2ED
SHA512 28EF8E27292EC908B8D3B679AF89749FA28BEFEF99935121BE2493929D09002E6D7E9778B213648619736F2F23A62DF2D77AFFD2A2DDC1B79A1F2EEFE9121221
SSDEEP 3072:iiCJEzZTTbO8mcUC1oz2pg3fbollTrxv3w4MdB/LafpcCkBRwu+vvY3LcSZ2P9hg:u0JGf8Resl3PMd1L8p4Aut3LCPL

Signature

  • Status: Signature verified.
  • Serial: 330000023241FB59996DCC4DFF000000000232
  • Thumbprint: FF82BC38E1DA5E596DF374C53E3617F7EDA36B06
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: dxdiag.exe
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.18362.387 (WinBuild.160101.0800)
  • Product Version: 10.0.18362.387
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.

Possible Misuse

The following table contains possible examples of dxdiag.exe being misused. While dxdiag.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
sigma registry_event_persistence_search_order.yml Image: 'C:\WINDOWS\SYSTEM32\dxdiag.exe' DRL 1.0

MIT License. Copyright (c) 2020-2021 Strontic.