rdpshell.exe
- File Path:
C:\WINDOWS\system32\rdpshell.exe - Description: RemoteApp Shell
Hashes
| Type | Hash |
|---|---|
| MD5 | A11465C69444A927B59CEB33D42C2155 |
| SHA1 | 8E986A1B95763371446372FBEFA95212444498BE |
| SHA256 | DE993892EA934B3521C85706E8F8B2FB6852F8A9AB08C234BC015038272DCBAA |
| SHA384 | A083A40CF14E9A66E942C51ED628C1DF8750940D584E5C75C4D6866FE32765DB1C86C27EACCB1366DDA44872385792A0 |
| SHA512 | 2A3287E0AFA9A80195AA15825ADEEBB6CA075DACA1ED052A27E4632B17A40D936326DFF18DF0163EC2015E8F5FB9C455CB6F5525A08B318FDB299CFBD4CDC0F1 |
| SSDEEP | 12288:1ZFNBn2rgbt/BflLkk/2pr2gn5OprSrgPTaoIa7:LFNBn2rEZflLkaq2g5OpGsH7 |
| IMP | D511E3BCB3890D1E4E8D6253DAB93387 |
| PESHA1 | 26C30E9769C569B0D55680D50EC8207182F4FD1F |
| PE256 | 163751D808328A6D286DD6B55490949FC5975C1C1472D46A5EBBB1540B25E992 |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED - Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A - Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
File Metadata
- Original Filename: rdpshell.exe.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.22000.1 (WinBuild.160101.0800)
- Product Version: 10.0.22000.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/73
- VirusTotal Link: https://www.virustotal.com/gui/file/de993892ea934b3521c85706e8f8b2fb6852f8a9ab08c234bc015038272dcbaa/detection
MIT License. Copyright (c) 2020-2021 Strontic.