wowreg32.exe
- File Path:
C:\WINDOWS\system32\wowreg32.exe
- Description: SetupAPI 64-bit Surrogate
Hashes
| Type |
Hash |
| MD5 |
3AA2D75C1F64E9DFF1899717B9F462F8 |
| SHA1 |
E14BD9D9DDD026BF9910A3EFF8C0CF02CE18D3B9 |
| SHA256 |
E6CE0937608B31858C013C3E54E9DABFC375804B0C6CC8309A77FF09F80DC464 |
| SHA384 |
53132C9FE3A138053DA25C9C8FE3B22F8566DC9CEB8AF9F34BFC127F780DF0644A72E7FE32865FC5B63496973758C4C7 |
| SHA512 |
1A4AF83927DCD1F4CCB9AAB21BB8204F4CA8428289738A8D87AC6C3B234C495C6E68837496893EAB9A694DD55D67C15744622860F719D4DCC866488A41F5A13D |
| SSDEEP |
384:/StCBNwZbuE/j2LJzOOc9GjUMmDIiLoWglZjHW:/SF9uEbUEQFmVyZj |
| IMP |
E0B82AE16E37ABDBBB63253901D0042D |
| PESHA1 |
AA43049D16363EAC04FD331D61750A2E3C9CB9C3 |
| PE256 |
B64BEDAEC5ACD3DAADD39199FDE39AB1111678FD22DBA3383C899E8DBD9F1D73 |
Runtime Data
Loaded Modules:
| Path |
| C:\WINDOWS\System32\KERNEL32.DLL |
| C:\WINDOWS\System32\KERNELBASE.dll |
| C:\WINDOWS\SYSTEM32\ntdll.dll |
| C:\WINDOWS\system32\wowreg32.exe |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED
- Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: WOWREG32.EXE
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.22000.194 (WinBuild.160101.0800)
- Product Version: 10.0.22000.194
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/73
- VirusTotal Link: https://www.virustotal.com/gui/file/e6ce0937608b31858c013c3e54e9dabfc375804b0c6cc8309a77ff09f80dc464/detection
MIT License. Copyright (c) 2020-2021 Strontic.