ielowutil.exe

  • File Path: C:\Program Files\Internet Explorer\ielowutil.exe
  • Description: Internet Low-Mic Utility Tool

Hashes

Type Hash
MD5 D831180F7596E0D2BB87B2CC57ECFCA2
SHA1 472A9D3F90A50222D4944C70422734F4955F15A1
SHA256 3099B6CF67191B1A7E4D8463576FE85835E8DF2296DBA3470B0CD42BABD336C8
SHA384 140BF018B6217E48541831EE40D7425A01BFBA09FA490D10A108A1615F55383F897278F2131C0067C6478BC2068D12A4
SHA512 879446F600F21135C6E0ED3DF8991906F6213569F72F701CB97CE0ACD52A1187E0A0FAF484E50ED22AB8EA64D1217C65A2FF1B693AA06F5993532CA163F5A6B7
SSDEEP 3072:VstD7trOt9pfslMYO9mXn9H0LeinObM6gZy5ChoTic:Vw1rOt9pdYamXnrdbMKw
IMP D9652E955DB76BA3EEBAB87845BB3F85
PESHA1 05A6FBB9AE793E3A206E71634B533A02B1A277A5
PE256 ADC3C56DC6E4286B5E492FE6DC36A366058131B12E8A70B6CB4BFB6636691D93

Runtime Data

Loaded Modules:

Path
C:\Program Files\Internet Explorer\ielowutil.exe
C:\Windows\System32\GDI32.dll
C:\Windows\System32\gdi32full.dll
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\System32\msvcp_win.dll
C:\Windows\System32\msvcrt.dll
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\ucrtbase.dll
C:\Windows\System32\USER32.dll
C:\Windows\System32\win32u.dll

Signature

  • Status: Signature verified.
  • Serial: 330000026551AE1BBD005CBFBD000000000265
  • Thumbprint: E168609353F30FF2373157B4EB8CD519D07A2BFF
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: ielowutil.exe
  • Product Name: Internet Explorer
  • Company Name: Microsoft Corporation
  • File Version: 11.00.19041.1 (WinBuild.160101.0800)
  • Product Version: 11.00.19041.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: 0/70
  • VirusTotal Link: https://www.virustotal.com/gui/file/3099b6cf67191b1a7e4d8463576fe85835e8df2296dba3470b0cd42babd336c8/detection/

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\Internet Explorer\ieinstal.exe 57
C:\Program Files (x86)\Internet Explorer\ieinstal.exe 54
C:\Program Files (x86)\Internet Explorer\ielowutil.exe 96
C:\Program Files (x86)\Internet Explorer\ielowutil.exe 93
C:\Program Files\internet explorer\ieinstal.exe 54
C:\Program Files\Internet Explorer\ieinstal.exe 54
C:\Program Files\internet explorer\ielowutil.exe 96

Possible Misuse

The following table contains possible examples of ielowutil.exe being misused. While ielowutil.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
malware-ioc nukesped_lazarus .ielowutil.exe``{:.highlight .language-cmhg} © ESET 2014-2018

MIT License. Copyright (c) 2020-2021 Strontic.