unins000.exe

  • File Path: C:\Program Files (x86)\XnView\unins000.exe
  • Description: Setup/Uninstall

Hashes

Type Hash
MD5 898376CA4B6D0CA96191BD99DAA74243
SHA1 6F06B52D23778605F5CFC2DA0BEBE3D8B1327E7B
SHA256 B694D0527AD7720AF2810AF32A6340C3E75A5DACE2DFA11D37E48DDAB133D4BC
SHA384 95D4A2D054A6B284BF0ED49A7457BA128C4F944ED9A7DAF16C5B1F803B65D03A410C1287C9430478B1C7159D770A867D
SHA512 3B0B78BDE097363F38CB6D2513A2B15FF51BB8F508790A9491D5F2EC8B29917850B05D413369B9A0D7F834F19714E4571157D93FC2540749F03C321A92513615
SSDEEP 24576:inbbPImgK4brDi4IxgRqzwqNb+Yz73P2EMZbG0JEtFqx993:gHeKh4nqzF3PYdStgP
IMP F62B90E31ECA404F228FCF7068B00F31
PESHA1 CE366F481D1DEB218199B5DE7CCDC9F8FC3F0069
PE256 162C2281B754EA0555CC730CA518BBDE8F141EF1284E3421EA9BA0A837B51A2B

Runtime Data

Child Processes:

_iu14D2N.tmp

Open Handles:

Path Type
(R-D) C:\Windows\System32\en-US\KernelBase.dll.mui File
(R-D) C:\Windows\System32\en-US\netmsg.dll.mui File
(R-D) C:\Windows\SysWOW64\en-US\user32.dll.mui File
(RW-) C:\Windows File
(RW-) C:\Windows\SysWOW64 File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_11b1e5df2ffd8627 File
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 Section
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 Section
\Sessions\1\Windows\Theme2547664911 Section
\Windows\Theme3854699184 Section

Loaded Modules:

Path
C:\Program Files (x86)\XnView\unins000.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll

Signature

  • Status: Signature verified.
  • Serial: 06FDFE1CF0EF43D40CFDB0016F42BD2A
  • Thumbprint: FB2BA3CB6F5BCE2F31AB70F756321A917CE45B27
  • Issuer: CN=DigiCert SHA2 Assured ID Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US
  • Subject: CN=Pierre GOUGELET, O=Pierre GOUGELET, L=BETHENY, C=FR

File Metadata

  • Original Filename:
  • Product Name:
  • Company Name:
  • File Version: 51.1052.0.0
  • Product Version:
  • Language: Language Neutral
  • Legal Copyright:
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/74
  • VirusTotal Link: https://www.virustotal.com/gui/file/b694d0527ad7720af2810af32a6340c3e75a5dace2dfa11d37e48ddab133d4bc/detection/

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\KeePass Password Safe 2\unins000.exe 91
C:\Program Files (x86)\Microsoft\Skype for Desktop\unins000.exe 90
C:\program files (x86)\Microsoft\Skype for Desktop\unins000.exe 90
C:\Program Files (x86)\Microsoft\Skype for Desktop\unins000.exe 90
C:\Program Files\CDBurnerXP\unins000.exe 90
C:\Program Files\VS Revo Group\Revo Uninstaller\unins000.exe 91
C:\program files\WinMerge\unins000.exe 91

MIT License. Copyright (c) 2020-2021 Strontic.