iexpress.exe

  • File Path: C:\WINDOWS\system32\iexpress.exe
  • Description: Wizard

Screenshot

iexpress.exe iexpress.exe

Hashes

Type Hash
MD5 708623DF414FC40009147384860E40D7
SHA1 25BFE13357D850BC01C41D41A53ECFB26AD666E4
SHA256 8537584E3272016A99CC4D3BAF354F3DF19C5974740FF57D45D6ED362AB8682D
SHA384 BF5FE5CC14F3618F2ACBBC3C7B0D6D7BB35EDC525EA7010E4EA836B697BF158CB7CD18717FFE96D87DD5D49E54A4FB66
SHA512 A50BAB4A991F4464DC099F0090DFC5CB32B0494F5BAA97EE12DB35AA181732CFCC8F8C7D03A3B5FC7CFBF099FBFF4FD397B8BCCBF187F2339F1126E069777FD0
SSDEEP 3072:1yZrPTfntLUqRiTomrUEFW5bI8Sh1EBnNDnGOb+ahXNqJohePnq45L84Y:urPbFNATomrUEFSnhlNDGOb+asEwv5L
IMP EB7245009D5161BC32C51EA9DCB81D49
PESHA1 62BAC90D0C151EB05F0BB5BB45B246BDA6074ED8
PE256 2BBBF8E8D30F32EC7E85885CF78DFEF4E82277730B2FDF3919C23B545B583B04

Runtime Data

Window Title:

IExpress Wizard

Open Handles:

Path Type
(R-D) C:\Windows\Fonts\StaticCache.dat File
(R-D) C:\Windows\System32\en-US\iexpress.exe.mui File
(R-D) C:\Windows\WinSxS\amd64_microsoft.windows.c..-controls.resources_6595b64144ccf1df_5.82.22000.1_en-us_3d25d89296d34d0b\comctl32.dll.mui File
(RW-) C:\Windows\System32 File
(RW-) C:\Windows\WinSxS\amd64_microsoft.windows.c..-controls.resources_6595b64144ccf1df_5.82.22000.1_en-us_3d25d89296d34d0b File
(RW-) C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.22000.1_none_271a8fad6a2d1b1e File
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000001.db Section
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000001.db Section
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*cversions.2.ro Section
\Sessions\2\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 Section
\Sessions\2\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 Section
\Sessions\2\Windows\Theme1077709572 Section
\Windows\Theme3461253685 Section

Loaded Modules:

Path
C:\WINDOWS\System32\GDI32.dll
C:\WINDOWS\System32\gdi32full.dll
C:\WINDOWS\system32\iexpress.exe
C:\WINDOWS\System32\KERNEL32.DLL
C:\WINDOWS\System32\KERNELBASE.dll
C:\WINDOWS\System32\msvcp_win.dll
C:\WINDOWS\SYSTEM32\ntdll.dll
C:\WINDOWS\System32\ucrtbase.dll
C:\WINDOWS\System32\USER32.dll
C:\WINDOWS\System32\win32u.dll

Signature

  • Status: Signature verified.
  • Serial: 33000002ED2C45E4C145CF48440000000002ED
  • Thumbprint: 312860D2047EB81F8F58C29FF19ECDB4C634CF6A
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: IEXPRESS.EXE.MUI
  • Product Name: Internet Explorer
  • Company Name: Microsoft Corporation
  • File Version: 11.00.22000.1 (WinBuild.160101.0800)
  • Product Version: 11.00.22000.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: 0/73
  • VirusTotal Link: https://www.virustotal.com/gui/file/8537584e3272016a99cc4d3baf354f3df19c5974740ff57d45d6ed362ab8682d/detection

File Similarity (ssdeep match)

File Score
C:\Windows\system32\cabview.dll 47
C:\Windows\system32\iexpress.exe 54
C:\Windows\system32\iexpress.exe 58
C:\windows\system32\iexpress.exe 57
C:\WINDOWS\system32\iexpress.exe 60
C:\Windows\system32\iexpress.exe 63
C:\Windows\SysWOW64\cabview.dll 46
C:\windows\SysWOW64\iexpress.exe 55
C:\WINDOWS\SysWOW64\iexpress.exe 58
C:\Windows\SysWOW64\iexpress.exe 58
C:\WINDOWS\SysWOW64\iexpress.exe 60
C:\Windows\SysWOW64\iexpress.exe 60
C:\Windows\SysWOW64\iexpress.exe 57

MIT License. Copyright (c) 2020-2021 Strontic.