proquota.exe

  • File Path: C:\windows\SysWOW64\proquota.exe
  • Description: ProQuota

Hashes

Type Hash
MD5 DF801B9FC4247EBFBFE07E5EC417C5B0
SHA1 E7B49D915D13DAA9138D93C704213EBE9C70B5B1
SHA256 D9FEDCACBED1184C3D492063BEC05E3293BFBDCABFD097F711B01275BF2720B1
SHA384 5530A2924BFC71146C3A8B14E5B73DB4F58EA5D60304B82B16B1DB5F6E125CEB75514B2D916016F84A9DA3AB4B10B99A
SHA512 1D44FB856227DA292D2B9F286FE08345399AD78029B7372270CC5740E0B79E634531D51819A20902394D1BFF07890176B083A0BD0FA5215BB665F0A08A063E5E
SSDEEP 384:/kLRr2ajp7Fmc+vEljiaph55OMWXyySKZRf0LqkcZjEWuuW/k:sL8qS8leyOM4zMLqk3

Signature

  • Status: The file C:\windows\SysWOW64\proquota.exe is not digitally signed. You cannot run this script on the current system. For more information about running scripts and setting execution policy, see about_Execution_Policies at http://go.microsoft.com/fwlink/?LinkID=135170
  • Serial: ``
  • Thumbprint: ``
  • Issuer:
  • Subject:

File Metadata

  • Original Filename: proquota.exe.mui
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 6.3.9600.16384 (winblue_rtm.130821-1623)
  • Product Version: 6.3.9600.16384
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.

Possible Misuse

The following table contains possible examples of proquota.exe being misused. While proquota.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
sigma proc_creation_win_logon_scripts_userinitmprlogonscript_proc.yml - '\proquota.exe' DRL 1.0

MIT License. Copyright (c) 2020-2021 Strontic.