redircmp.exe
- File Path:
C:\Windows\system32\redircmp.exe
- Description: Microsoft Computer Container Redirection Utility
Hashes
| Type |
Hash |
| MD5 |
2586DC031DD47A33708CB981A8B0957F |
| SHA1 |
B8B2516CF5D4776CEB34CD3AB42763FAF052DFD6 |
| SHA256 |
7AF0EBEAFD3FF7F2B1544E4943AB35448AF93661B545218DA6ABB75198C4F88B |
| SHA384 |
146BC200F07E8C1AD7BC752177955E4B0EE0D65B8F64EB70FC33CC943777603F40904FB3D746A8DEAEF59EA2CB81DB7B |
| SHA512 |
EF1CC42B728F9AFBEBDC1CAE189E148CC887C4C008ABA241FBEBA33D2B9C1C0C21AF370DE265A76BA667E735B3BFBB789B3D4C1DAF1427DF1E48E3CC6311B26F |
| SSDEEP |
192:KnRVANyjXrVD60A7kTCRQg1fe6GjuyTEtGoFdF4c0SmFWqnbW:Kn8erVDP4nGgtedyVt3F4cYFWqnbW |
Runtime Data
Usage (stdout):
Usage:
redircmp CONTAINER-DN
where CONTAINER-DN is the distinguished name of the container
that will become the default location for newly created computer objects
Note: The domain functional level must be at least Windows Server 2003
Loaded Modules:
| Path |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\system32\redircmp.exe |
Signature
- Status: Signature verified.
- Serial:
33000001C422B2F79B793DACB20000000001C4
- Thumbprint:
AE9C1AE54763822EEC42474983D8B635116C8452
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: redircmp.exe.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.17763.1 (WinBuild.160101.0800)
- Product Version: 10.0.17763.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.