unins000.exe

File Path: C:\Program Files (x86)\Microsoft\Skype for Desktop\unins000.exe
Description: Setup/Uninstall

Hashes

Type	Hash
MD5	`1169F1200B4C246640968E6298DD1441`
SHA1	`FDF3D51B9595FFD0F5625BC0EB590DE6C51B085A`
SHA256	`90B78ACED65A93E461EDF03873713ACF6D0FA7F937527C9073E3D1C656840AEB`
SHA384	`D7F0AC8D4420203D10210FFDCE0E31222DF59FB1473FE7325F9CDC9CD06120C69CBA7CC4845C595D090B8B8BE6D43328`
SHA512	`B24045FF0CC06930A9B167F2A6C972A305EDE4E38C199EE0B15F20FCC902DFBD917D4C8663B812C494E7FC830056FAF6964F8BD0BD52DBCBFB23795523F49522`
SSDEEP	`24576:0nbbPImgK4brDi4IxgRqzwqNb+Yz73P2EMZbG0JEtXlCbWqx9q7:iHeKh4nqzF3PYdStVCb7s`
IMP	`F62B90E31ECA404F228FCF7068B00F31`
PESHA1	`8AE1C348630D06FE8B6D1F165F84F1EF0A4308C5`
PE256	`FF797A2FECB43DCF835C6A7FCF7690C1E9AA35FCCBE0AA209DBE2F299A7F4617`

Runtime Data

Child Processes:

_iu14D2N.tmp

Open Handles:

Path	Type
(R-D) C:\Windows\System32\en-US\KernelBase.dll.mui	File
(R-D) C:\Windows\System32\en-US\netmsg.dll.mui	File
(R-D) C:\Windows\SysWOW64\en-US\user32.dll.mui	File
(RW-) C:\Windows	File
(RW-) C:\Windows\SysWOW64	File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1110_none_a8625c1886757984	File
\BaseNamedObjects\C:ProgramDataMicrosoftWindowsCaches*{6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000002.db	Section
\BaseNamedObjects\C:ProgramDataMicrosoftWindowsCaches*{DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000002.db	Section
\BaseNamedObjects\C:ProgramDataMicrosoftWindowsCaches*cversions.2	Section
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0	Section
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0	Section
\Sessions\1\Windows\Theme449731986	Section
\Windows\Theme1396518710	Section

Loaded Modules:

Path
C:\Program Files (x86)\Microsoft\Skype for Desktop\unins000.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll

Signature

Status: Signature verified.
Serial: 33000002198C0A9FB2162B10E6000000000219
Thumbprint: 659500EB3E9497BDBE7DB7FF0801B5F46FBDE760
Issuer: CN=Microsoft Code Signing PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Skype Software Sarl, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename:
Product Name:
Company Name:
File Version: 51.1052.0.0
Product Version:
Language: Language Neutral
Legal Copyright:
Machine Type: 32-bit

File Scan

VirusTotal Detections: 0/73
VirusTotal Link: https://www.virustotal.com/gui/file/90b78aced65a93e461edf03873713acf6d0fa7f937527c9073e3d1c656840aeb/detection

File Similarity (ssdeep match)

File	Score
C:\Program Files (x86)\KeePass Password Safe 2\unins000.exe	86
C:\program files (x86)\Microsoft\Skype for Desktop\unins000.exe	97
C:\Program Files (x86)\Microsoft\Skype for Desktop\unins000.exe	99
C:\Program Files (x86)\XnView\unins000.exe	90
C:\Program Files\CDBurnerXP\unins000.exe	85
C:\Program Files\VS Revo Group\Revo Uninstaller\unins000.exe	88
C:\program files\WinMerge\unins000.exe	86

MIT License. Copyright (c) 2020-2021 Strontic.