unins000.exe

  • File Path: C:\Program Files\VS Revo Group\Revo Uninstaller\unins000.exe
  • Description: Setup/Uninstall

Hashes

Type Hash
MD5 6620E40043ED6C1F75BCD873469F2850
SHA1 115667854CFBC5E1C67C8C9E634D73C60220BF9A
SHA256 31669C5ED708E80DA278FEC825A308214DB47C07DA3186801C2744608F766017
SHA384 D6F180405389ABC1E882AC5984B600967251671134FA9C1FE922F58BD1CD7FC8F4FB70C955B691C90932F7A71FAA6F3F
SHA512 4F337990379F3C234402449BFB66C49BF6FA93896D8D233241A967D0820A2FCE07F8A6376D974FF5A93D5F6CB9E25DEBE13E2BE930C10F96D51B697D7A59A32C
SSDEEP 24576:AnbbPImgK4brDi4IxgRqzwqNb+Yz73P2EMZbG0JEtoPqx9nZ:2HeKh4nqzF3PYdStoaP
IMP F62B90E31ECA404F228FCF7068B00F31
PESHA1 E9FB9CAE2F3F1E8C29C8B50C016839E93034902B
PE256 BBCC53FC44E780A300F7EF951C56331DFF67A0996C2195A5C538BD7EB0A451F6

Runtime Data

Child Processes:

_iu14D2N.tmp

Open Handles:

Path Type
(R-D) C:\Windows\System32\en-US\KernelBase.dll.mui File
(R-D) C:\Windows\System32\en-US\netmsg.dll.mui File
(R-D) C:\Windows\SysWOW64\en-US\user32.dll.mui File
(RW-) C:\Windows File
(RW-) C:\Windows\SysWOW64 File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_11b1e5df2ffd8627 File
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 Section
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 Section
\Sessions\1\Windows\Theme2547664911 Section
\Windows\Theme3854699184 Section

Loaded Modules:

Path
C:\Program Files\VS Revo Group\Revo Uninstaller\unins000.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll

Signature

  • Status: The file C:\Program Files\VS Revo Group\Revo Uninstaller\unins000.exe is not digitally signed. You cannot run this script on the current system. For more information about running scripts and setting execution policy, see about_Execution_Policies at https:/go.microsoft.com/fwlink/?LinkID=135170
  • Serial: ``
  • Thumbprint: ``
  • Issuer:
  • Subject:

File Metadata

  • Original Filename:
  • Product Name:
  • Company Name:
  • File Version: 51.1052.0.0
  • Product Version:
  • Language: Language Neutral
  • Legal Copyright:
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/69
  • VirusTotal Link: https://www.virustotal.com/gui/file/31669c5ed708e80da278fec825a308214db47c07da3186801c2744608f766017/detection/

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\KeePass Password Safe 2\unins000.exe 90
C:\Program Files (x86)\Microsoft\Skype for Desktop\unins000.exe 88
C:\program files (x86)\Microsoft\Skype for Desktop\unins000.exe 88
C:\Program Files (x86)\Microsoft\Skype for Desktop\unins000.exe 90
C:\Program Files (x86)\XnView\unins000.exe 91
C:\Program Files\CDBurnerXP\unins000.exe 88
C:\program files\WinMerge\unins000.exe 90

MIT License. Copyright (c) 2020-2021 Strontic.