ielowutil.exe

  • File Path: C:\Program Files (x86)\Internet Explorer\ielowutil.exe
  • Description: Internet Low-Mic Utility Tool

Hashes

Type Hash
MD5 CE5D25E64B5CB96681659196EB6147E9
SHA1 073D140171D578D847EB6C518756183BE053F7FB
SHA256 D3FA76E0B2EDC355B2AE1F6F3BBF95AE3A314644F7CFFE9732A0B692341627B6
SHA384 E9C39DB10E5CA43259A3E36545AE9DCA7CB69174F111EF1D6425A6A274A994EA20C41E7B52D90FDFAEF981BD937E6DA0
SHA512 9E51AD02E640BE971B1E4B5323FC5D9B9844C807AAFE659CFAE329E5B59BD7FB2535F3980DD6F1658B2D8A310CAD9D7CA0D493ECDB53287D5D55D49AD40BA6BC
SSDEEP 3072:MJX2/stD7trOt9pfslMYO9mXn9H0LeinObM6gZy5ChoTi3:MA/w1rOt9pdYamXnrdbMKw
IMP 3CB0B3DC860A198C4B7291725FF7B90F
PESHA1 3C51B0D5D4AD844A4A9031D3355E63173F52B051
PE256 77E0C4672F9B7AF2691BEC695FCFFF3EE467F6746F42B9704F06AA6933DAE638

Runtime Data

Loaded Modules:

Path
C:\Program Files (x86)\Internet Explorer\ielowutil.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll

Signature

  • Status: Signature verified.
  • Serial: 33000001C422B2F79B793DACB20000000001C4
  • Thumbprint: AE9C1AE54763822EEC42474983D8B635116C8452
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: ielowutil.exe
  • Product Name: Internet Explorer
  • Company Name: Microsoft Corporation
  • File Version: 11.00.17763.1 (WinBuild.160101.0800)
  • Product Version: 11.00.17763.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/67
  • VirusTotal Link: https://www.virustotal.com/gui/file/d3fa76e0b2edc355b2ae1f6f3bbf95ae3a314644f7cffe9732a0b692341627b6/detection/

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\Internet Explorer\ieinstal.exe 58
C:\Program Files (x86)\Internet Explorer\ieinstal.exe 55
C:\Program Files (x86)\Internet Explorer\ielowutil.exe 91
C:\Program Files\internet explorer\ieinstal.exe 55
C:\Program Files\Internet Explorer\ieinstal.exe 55
C:\Program Files\internet explorer\ielowutil.exe 96
C:\Program Files\Internet Explorer\ielowutil.exe 93

Possible Misuse

The following table contains possible examples of ielowutil.exe being misused. While ielowutil.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
malware-ioc nukesped_lazarus .ielowutil.exe``{:.highlight .language-cmhg} © ESET 2014-2018

MIT License. Copyright (c) 2020-2021 Strontic.