Information about 56f0263.rbf

56f0263.rbf

File Details

Product Name:

Microsoft.Expression.Interactions
Company Name:

Microsoft Corporation
MD5: 6a3b9e46c41e42e7b8e1479468d892af
Size: 89 KB
First Published: 2017-05-27 22:06:33 (7 years ago)
Latest Published: 2024-06-25 23:02:35 (5 months ago)
Status: Undefined (on last analysis)
Analysis Date: 2024-06-25 23:02:35 (5 months ago)

Common Places:

%programfiles%\redhelper\3.12.252.1022
%programfiles%\redhelper\3.12.252.1022\temp\3.12.248.1006\update1.0.0.0-3.12.248.1006
%programfiles%\redhelper
%programfiles%\essentware\pckeeper
%programfiles%\cleanmypc
%sysdrive%\config.msi
%programfiles%\kromtech\pckeeper
%programfiles%
%programfiles%\essentware
%system%\config\systemprofile\appdata\roaming\funspeed\program files (x86)\avira

File Names:

Microsoft.Expression.Interactions.dll
56f0263.rbf
274f118e.rbf
2efb227a.rbf
8e36348.rbf
Microsoft.Expression.Interactions.dll.quarantined

Geography:

21.2%
11.2%
6.6%
4.4%
4.0%
3.6%
2.9%
2.7%
2.7%
2.5%
2.4%
2.2%
2.1%
2.1%
1.7%
1.5%
1.4%
1.2%
1.2%
1.2%
1.2%
1.1%
0.9%
0.9%
0.8%
0.8%
0.7%
0.7%
0.7%
0.6%
0.6%
0.6%
0.6%
0.6%
0.5%
0.5%
0.5%
0.5%
0.4%
0.4%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%

OS Version:

Windows 10 62.8%
Windows 7 29.7%
Windows 8.1 5.9%
Windows XP 0.7%
Windows Vista 0.2%
Windows Embedded Standard 0.2%
Windows Server 2012 R2 0.1%
Windows 8 0.1%
Windows Server 2016 0.1%
Windows Embedded 8.1 0.1%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00017a1e

.NET Info:

MVID: bc4a9686-2f61-4ac2-8eb3-1b5f0c27fa5c

PE Sections:

Name Size of data MD5
.text 89088 240188ae4cedb7a7b4b44506184f186d
.rsrc 1536 ee0826ecae064bfdc20609b28a364301
.reloc 512 12ed4a579dcf41fa96f13a68c97d6bf2

More information:

Search on Virustotal
copyright for information about 56f0263.rbf