wowreg32.exe
- File Path:
C:\Windows\SysWOW64\wowreg32.exe
- Description: SetupAPI 32-bit Surrogate
Hashes
| Type |
Hash |
| MD5 |
BCB6AB94A7F844C08E625290F4C50E80 |
| SHA1 |
36EFC203CC3ACA4E77202E637472A07F83FAA169 |
| SHA256 |
5790ECBB47EE1391502C81159A9DCF24B569EA2E3F4DD47E4267F81EACB70A4C |
| SHA384 |
25C0F4EDAF3FD1BCD8D8B68435A5B1BDAF1FEFFB2942283C3B30481F70BCC7C831D121357C7ACCF912EA5B76B36308E6 |
| SHA512 |
0E11961D0ACA42E515270F31C7EE9B0D73E13C02428177A4C0AB29EFDDADDD2C0A4C69F3122AE0EA9E4E76AE15AB03928C12E7FDB4627CE677CE07079DB7FC74 |
| SSDEEP |
192:FFOum/QeC6Ild190/bazNm9vFYNrCgt8LtkWZ1XvaWg7ZjHWYst:WOd/0/bl9vqeA8JFCWg7ZjHWYK |
| IMP |
8B8A143002F5FC8DCA7CC0A0DC979CEF |
| PESHA1 |
2A6F001627B9BF7D0E85490993219547C1863762 |
| PE256 |
B964A5011470964751E87D5C9B6B80D89F6DAD62E8BA4E6AF70871A3C88C08D9 |
Runtime Data
Loaded Modules:
| Path |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\wow64.dll |
| C:\Windows\System32\wow64cpu.dll |
| C:\Windows\System32\wow64win.dll |
| C:\Windows\SysWOW64\wowreg32.exe |
Signature
- Status: Signature verified.
- Serial:
33000002EC6579AD1E670890130000000002EC
- Thumbprint:
F7C2F2C96A328C13CDA8CDB57B715BDEA2CBD1D9
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: WOWREG32.EXE
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1237 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1237
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/73
- VirusTotal Link: https://www.virustotal.com/gui/file/5790ecbb47ee1391502c81159a9dcf24b569ea2e3f4dd47e4267f81eacb70a4c/detection
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.