escUnattend.exe
- File Path:
C:\Windows\system32\escUnattend.exe - Description: IE ESC 7.0 Unattended Install Utility
Hashes
| Type | Hash |
|---|---|
| MD5 | 218719C38D2A27B9788782CE92ECDD84 |
| SHA1 | 48E8EE7C34084BAE62758D03894A3D0CB0C1F408 |
| SHA256 | 10BBC02017496413F6D31AD21561B96443D9582D5A4FE528F54FCB479EEF4FC9 |
| SHA384 | 9EE57FF2AABF10ADDECD896712B444B26FB1D35FDBF8BC8E1AB875F93B2C2E5CE61CB9EBD7E0956F1ADCA65050B1B0B5 |
| SHA512 | FE61F70579FA103ACC2FB990EF6A9CF70E48973652DA11B60227C79BE7E7D5A3B974878893427D5B68FC53436BEA06AC9F53132C2B497F8340D48BA2C0148D85 |
| SSDEEP | 1536:lBRGiEZmylLzo+IDUmh7peWqm/VqL4lp7C8ti:40+g5QngpO2i |
| IMP | 8B048653C852C221057F23F7F73AE071 |
| PESHA1 | 4E6462B3F6D031F26089C2445A51BF7888937DCF |
| PE256 | D0FD173706D557DC12FEE3FBC5317B5672CA570EDA73408DD1A76D6F2B24FDB6 |
Runtime Data
Child Processes:
rundll32.exe
Loaded Modules:
| Path |
|---|
| C:\Windows\system32\escUnattend.exe |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266 - Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840 - Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
File Metadata
- Original Filename: ESCUNATTEND.EXE
- Product Name: Internet Explorer
- Company Name: Microsoft Corporation
- File Version: 11.00.17763.1 (WinBuild.160101.0800)
- Product Version: 11.00.17763.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/71
- VirusTotal Link: https://www.virustotal.com/gui/file/10bbc02017496413f6d31ad21561b96443d9582d5a4fe528f54fcb479eef4fc9/detection/
MIT License. Copyright (c) 2020-2021 Strontic.