proquota.exe

  • File Path: C:\windows\system32\proquota.exe
  • Description: ProQuota

Hashes

Type Hash
MD5 864379396733031C99B64550358CAEBD
SHA1 9C041A7A2E2BD7841F363174E333C91524BE02DC
SHA256 947F2686EEBFAC23E7FB788F4FE5731178FB6BC4257E38568205541CE426E9F3
SHA384 AC5FF052338DC563059AD02CE8FD7792925079BC255013049047B905912C519417A441155EDDD5C1C3A9A5135D307DE4
SHA512 D3E877C5A6B925BD41957493B971B4FC7322A9511894A80AC6F5D7362FABE94A13A02F368B6B14901EC4DF92336575E83970365B0794E7938C8D76640FD9826B
SSDEEP 768:5z5wP5ZoJqVNJbss4ewiBpE3ym5B5lKRW/cX:159qVN4ewiBpIymD5lK2cX

Signature

  • Status: The file C:\windows\system32\proquota.exe is not digitally signed. You cannot run this script on the current system. For more information about running scripts and setting execution policy, see about_Execution_Policies at http://go.microsoft.com/fwlink/?LinkID=135170
  • Serial: ``
  • Thumbprint: ``
  • Issuer:
  • Subject:

File Metadata

  • Original Filename: proquota.exe.mui
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 6.3.9600.16384 (winblue_rtm.130821-1623)
  • Product Version: 6.3.9600.16384
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.

Possible Misuse

The following table contains possible examples of proquota.exe being misused. While proquota.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
sigma proc_creation_win_logon_scripts_userinitmprlogonscript_proc.yml - '\proquota.exe' DRL 1.0

MIT License. Copyright (c) 2020-2021 Strontic.