user.exe

  • File Path: C:\Windows\SysWOW64\user.exe
  • Description: User

Hashes

Type Hash
MD5 D4D86D15435CC99BDF659FFF6784092D
SHA1 1CD2F1FC825F17D270C4BED851BE31A65AAE09F5
SHA256 4D2B4AA1114B342C4068E77EE063A4687C1D07CC1E51938CADAC364DF479C5B4
SHA384 0DB368EBA1C1E0C7D7CF62F614599DD52DCC2054E358D16859E311670A67E3D47D000A4AD980A700174A7DC0AA5727A1
SHA512 850C35B2BFAA3C089DF5BE24692F544EBC3B7BEB0E7FA07EF64E7D996FAAFE2AE93F4F90456C7FD894FD7ACFF35D82F76D7F6A41FB98D3673013E71950A48E31
SSDEEP 24:eNGS/glSH+q6ooD812UDGKDIILiIZW0gNNZl2Si35WWdPPYPNl:a/glScooDMxIlIZWjXZno5WwHg
PESHA1 0721B7F32EAD7BBE1135D0E7D95838728D443242
PE256 91DECC042C0A76D51FF5EE1FF183713C9816667B74BD5ED92677E07721C41FB8

Signature

  • Status: Signature verified.
  • Serial: 33000001C422B2F79B793DACB20000000001C4
  • Thumbprint: AE9C1AE54763822EEC42474983D8B635116C8452
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: User.exe
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.17763.1 (WinBuild.160101.0800)
  • Product Version: 10.0.17763.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/71
  • VirusTotal Link: https://www.virustotal.com/gui/file/4d2b4aa1114b342c4068e77ee063a4687c1d07cc1e51938cadac364df479c5b4/detection/

File Similarity (ssdeep match)

File Score
C:\Windows\system32\advapi32res.dll 44
C:\Windows\system32\asferror.dll 49
C:\Windows\system32\blbres.dll 40
C:\Windows\system32\bridgeres.dll 46
C:\Windows\system32\comres.dll 43
C:\Windows\system32\DMAppsRes.dll 43
C:\Windows\system32\dmdskres.dll 44
C:\Windows\system32\dmdskres2.dll 47
C:\Windows\system32\ETWCoreUIComponentsResources.dll 41
C:\Windows\system32\icmp.dll 47
C:\Windows\system32\imageres.dll 44
C:\Windows\system32\imagesp1.dll 47
C:\Windows\system32\iologmsg.dll 44
C:\Windows\system32\lltdres.dll 46
C:\Windows\system32\MapControlStringsRes.dll 44
C:\Windows\system32\Microsoft-WindowsPhone-SEManagementProvider.dll 43
C:\Windows\system32\moricons.dll 49
C:\Windows\system32\msafd.dll 46
C:\Windows\system32\msprivs.dll 47
C:\Windows\system32\neth.dll 46
C:\Windows\system32\netmsg.dll 47
C:\Windows\system32\normaliz.dll 46
C:\Windows\system32\PhoneServiceRes.dll 46
C:\Windows\system32\PhoneutilRes.dll 46
C:\Windows\system32\qedwipes.dll 52
C:\Windows\system32\rnr20.dll 49
C:\Windows\system32\SensorsCpl.dll 41
C:\Windows\system32\SyncRes.dll 44
C:\Windows\system32\tapiui.dll 46
C:\Windows\system32\TelephonyInteractiveUserRes.dll 41
C:\Windows\system32\TpmCertResources.dll 38
C:\Windows\system32\wbem\WmiApRes.dll 46
C:\Windows\system32\WindowsPowerShell\v1.0\pwrshmsg.dll 43
C:\Windows\system32\winrsmgr.dll 49
C:\Windows\system32\wmerror.dll 41
C:\Windows\system32\wmploc.DLL 41
C:\Windows\system32\XAudio2_8.dll 44
C:\Windows\SysWOW64\advapi32res.dll 43
C:\Windows\SysWOW64\asferror.dll 49
C:\Windows\SysWOW64\comres.dll 41
C:\Windows\SysWOW64\DMAppsRes.dll 44
C:\Windows\SysWOW64\dmdskres.dll 46
C:\Windows\SysWOW64\dmdskres2.dll 43
C:\Windows\SysWOW64\ETWCoreUIComponentsResources.dll 38
C:\Windows\SysWOW64\icmp.dll 44
C:\Windows\SysWOW64\imageres.dll 44
C:\Windows\SysWOW64\imagesp1.dll 47
C:\Windows\SysWOW64\iologmsg.dll 43
C:\Windows\SysWOW64\MapControlStringsRes.dll 44
C:\Windows\SysWOW64\moricons.dll 49
C:\Windows\SysWOW64\msafd.dll 46
C:\Windows\SysWOW64\mscpx32r.dLL 46
C:\Windows\SysWOW64\msorc32r.dll 44
C:\Windows\SysWOW64\neth.dll 49
C:\Windows\SysWOW64\netmsg.dll 46
C:\Windows\SysWOW64\normaliz.dll 41
C:\Windows\SysWOW64\PhoneutilRes.dll 44
C:\Windows\SysWOW64\qedwipes.dll 46
C:\Windows\SysWOW64\rnr20.dll 50
C:\Windows\SysWOW64\SensorsCpl.dll 40
C:\Windows\SysWOW64\SyncRes.dll 44
C:\Windows\SysWOW64\tapiui.dll 44
C:\Windows\SysWOW64\TpmCertResources.dll 40
C:\windows\SysWOW64\user.exe 49
C:\WINDOWS\SysWOW64\user.exe 60
C:\Windows\SysWOW64\user.exe 54
C:\Windows\SysWOW64\user.exe 47
C:\Windows\SysWOW64\user.exe 61
C:\WINDOWS\SysWOW64\user.exe 58
C:\Windows\SysWOW64\user.exe 50
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\pwrshmsg.dll 41
C:\Windows\SysWOW64\winrsmgr.dll 50
C:\Windows\SysWOW64\wmerror.dll 41
C:\Windows\SysWOW64\wmploc.DLL 43
C:\Windows\SysWOW64\XAudio2_8.dll 41

MIT License. Copyright (c) 2020-2021 Strontic.