mcbuilder.exe
- File Path:
C:\Windows\system32\mcbuilder.exe
- Description: Resource cache builder tool
Hashes
| Type |
Hash |
| MD5 |
7B786EF4D8FD478B2709D138672384B8 |
| SHA1 |
AD98CD2C7F51E8BC0CDFCBED42A426B61131CDC1 |
| SHA256 |
41BBD3B038263161D5098891C98F0693AF4B7AE42A150E2B644012087D2414F7 |
| SHA384 |
5B9E0C699A19ABB4C9950EB3608228F66EB5FAEC8D42F528D60B8B23AE49ECA59AFD70CA64A4541009A5051243D149C6 |
| SHA512 |
118EF087867FAF9EE179CB10A4B0FEFEBA9A8799A595DCAFDE5A8554ECEB2489191B6EFB5D48F87C69BEC5FF1F1BC0D3AD98BE58F5A6D60766BE2C0E0961E93A |
| SSDEEP |
1536:7gCtn7SKASvalkQQYp4w3XHp09B2ssW4d09dlh9uWCpqYBVs:7PtneKA6OkQQYp4w3XaBmMX9nCLBG |
| IMP |
91CCEB10DE1061E3BF15D1523E5FB7F9 |
| PESHA1 |
487B5FFF71C9C0FEEC482FB2A1A7BCEF62AE836B |
| PE256 |
853D7C5EF4AF3B11B5B65C62BCED8B9B76EB2A97C43A676739A59790B00B338C |
Runtime Data
Loaded Modules:
| Path |
| C:\Windows\System32\ADVAPI32.dll |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\system32\mcbuilder.exe |
| C:\Windows\system32\mrmcoreR.dll |
| C:\Windows\System32\msvcrt.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\RPCRT4.dll |
| C:\Windows\System32\sechost.dll |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: mcbuilder.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.17763.719 (WinBuild.160101.0800)
- Product Version: 10.0.17763.719
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/72
- VirusTotal Link: https://www.virustotal.com/gui/file/41bbd3b038263161d5098891c98f0693af4b7ae42a150e2b644012087d2414f7/detection/
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.