fontview.exe

  • File Path: C:\Windows\SysWOW64\fontview.exe
  • Description: Windows Font Viewer

Screenshot

fontview.exe

Hashes

Type Hash
MD5 A8E73AF0EEBD57BDC848C2A58B8CF8BD
SHA1 D49CFBE533C630AD635EAA5F1FFF9350A4ED5400
SHA256 1641406FEA81F03972E0F9FBE72F335032628FF6B17A9CD28A56DC5BC2983C40
SHA384 B2FD38DA386846095BFF9DD66D34891A2130E016F4EF793CA2C000A383C7D8E1CB53D27C618FBD2CA5D538E4E2491F9B
SHA512 FD8E75B9F93D1B948C1CF383F0A903354445B8BFD6FC2B97CB01969EF9F0ACD87AEC3008C3742CC23590110E6849FBF235EFF7E6B2A9D3BBB3CF4C1E50FC3924
SSDEEP 3072:koZOnEBeNJjWRkOtHxtt3EOL2QvIsitSYV5p:DZOnEBiWRRZzqGYL
IMP 45C6DEC368899AF38B3C2F1BD3E62E67
PESHA1 E0791B26C06E6E449D414E287B52333F7EDD9C6C
PE256 B7148B4A6CBC49E1A8A0FB2DD25BE42C372873ADDA24ED3CB595BCA74589083E

Runtime Data

Window Title:

Windows Font Viewer

Open Handles:

Path Type
(R-D) C:\Windows\Fonts\StaticCache.dat File
(R-D) C:\Windows\System32\en-US\fontview.exe.mui File
(R-D) C:\Windows\System32\en-US\imageres.dll.mui File
(RW-) C:\Users\user File
(RW-) C:\Windows File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17763.1518_none_261b62a767ca4e6d File
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000004.db Section
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000004.db Section
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*cversions.2.ro Section
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 Section
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 Section
\Sessions\2\Windows\Theme2131664586 Section
\Windows\Theme966197582 Section

Loaded Modules:

Path
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll
C:\Windows\SysWOW64\fontview.exe

Signature

  • Status: Signature verified.
  • Serial: 33000001C422B2F79B793DACB20000000001C4
  • Thumbprint: AE9C1AE54763822EEC42474983D8B635116C8452
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: FONTVIEW.EXE
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.17763.1 (WinBuild.160101.0800)
  • Product Version: 10.0.17763.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/72
  • VirusTotal Link: https://www.virustotal.com/gui/file/1641406fea81f03972e0f9fbe72f335032628ff6b17a9cd28a56dc5bc2983c40/detection/

File Similarity (ssdeep match)

File Score
C:\WINDOWS\system32\fontview.exe 68
C:\Windows\system32\fontview.exe 75
C:\WINDOWS\system32\fontview.exe 60
C:\windows\system32\fontview.exe 79
C:\Windows\system32\fontview.exe 66
C:\Windows\system32\fontview.exe 72
C:\Windows\SysWOW64\fontview.exe 85
C:\windows\SysWOW64\fontview.exe 75
C:\Windows\SysWOW64\fontview.exe 74
C:\WINDOWS\SysWOW64\fontview.exe 77
C:\WINDOWS\SysWOW64\fontview.exe 75

MIT License. Copyright (c) 2020-2021 Strontic.