ielowutil.exe

  • File Path: C:\Program Files (x86)\Internet Explorer\ielowutil.exe
  • Description: Internet Low-Mic Utility Tool

Hashes

Type Hash
MD5 650FE7460630188008BF8C8153526CEB
SHA1 7144969EAD7775499A3BD822F2BF0FFE41C108CE
SHA256 30E2D946D30D0A88DE97301661B47E1BA797D7787CF054231FB35144BEF4339B
SHA384 CD60AB062F321CB095793A8C1A946223D0A2BF7280BF71D2B3E496450B917A082E004EA8BECAC226182E118E9839B5B0
SHA512 60D6642E5DB8D03F7305D9D4E8DD1149C0AC740429558A92F5B4B2211F34569C70F086D84F373BA3DC913031BD19DD8AF6A68C0A5185593792973D5B5067BACA
SSDEEP 3072:Q0JsstD7trOt9pfslMYO9mXn9H0LeinObM6gZy5ChoTic:Qpw1rOt9pdYamXnrdbMKw
IMP B36F0BA532946116CA5962685B32980B
PESHA1 13E92EE409A1945FA8A6816426304D92438034D0
PE256 C7921210F4E3AB9B1F63CBCDBE119DB0DAB66131E70D62BBA567028645C46D1D

Runtime Data

Loaded Modules:

Path
C:\Program Files (x86)\Internet Explorer\ielowutil.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll

Signature

  • Status: Signature verified.
  • Serial: 3300000266BD1580EFA75CD6D3000000000266
  • Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: ielowutil.exe
  • Product Name: Internet Explorer
  • Company Name: Microsoft Corporation
  • File Version: 11.00.19041.1 (WinBuild.160101.0800)
  • Product Version: 11.00.19041.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/70
  • VirusTotal Link: https://www.virustotal.com/gui/file/30e2d946d30d0a88de97301661b47e1ba797d7787cf054231fb35144bef4339b/detection/

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\Internet Explorer\ieinstal.exe 60
C:\Program Files (x86)\Internet Explorer\ieinstal.exe 57
C:\Program Files (x86)\Internet Explorer\ielowutil.exe 91
C:\Program Files\internet explorer\ieinstal.exe 55
C:\Program Files\Internet Explorer\ieinstal.exe 57
C:\Program Files\internet explorer\ielowutil.exe 94
C:\Program Files\Internet Explorer\ielowutil.exe 96

Possible Misuse

The following table contains possible examples of ielowutil.exe being misused. While ielowutil.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
malware-ioc nukesped_lazarus .ielowutil.exe``{:.highlight .language-cmhg} © ESET 2014-2018

MIT License. Copyright (c) 2020-2021 Strontic.