dpinst64.exe file report

» File
File Details
Overview
Analysis

ThreatInfo file report

dpinst64.exe

Verdict Undefined

MD5 69d0ef2f5d448dd7f5e7c7686225c11c

Latest seen 2026-02-27 23:00:31 (3 months ago)

First seen 2020-03-14 13:28:35 (6 years ago)

Size 909 KB

Publisher Microsoft Corporation

Product Driver Package Installer (DPInst)

Signed by Kuzyakov Artur Vyacheslavovich IP

Analyst brief

What this report says

ThreatInfo has not assigned a final verdict to dpinst64.exe. The metadata below can still help compare the file identity, origin, and observed behavior against a copy found on a device.

This page combines the detection verdict with file identity, publisher metadata, alternate names, observed paths, geography, OS signals, and PE details so the report reads as a triage record rather than a standalone download page.

Why it matters

Evidence available for this file

Detection

No final classification is available yet.

Timeline

First seen 2020-03-14 13:28:35 (6 years ago); latest analysis 2026-02-27 23:00:31 (3 months ago).

Publisher context

Company metadata: Microsoft Corporation. Product metadata: Driver Package Installer (DPInst).

Digital signature

Signed by Kuzyakov Artur Vyacheslavovich IP. The signature is not reported as trusted and valid, which can indicate tampering, repackaging, or copied publisher data.

Observed locations

ThreatInfo has seen this file in user or system paths listed below. Unexpected locations increase the need for local verification.

Recommended action

What to do next

Use the hash and metadata below to verify the exact file identity.
Review publisher, signature, paths, and PE details for inconsistencies.
Run a local scan if the file appears unexpectedly or starts with Windows.

File context

dpinst64.exe is a Windows file recorded in the ThreatInfo database. It is associated with Driver Package Installer (DPInst). The reported company name is Microsoft Corporation. The current detection status is Undefined, based on the latest analysis from 2026-02-27 23:00:31 (3 months ago).

ThreatInfo does not have a final classification for this file yet. Use the technical details below to compare the hash, size, signature, and observed locations with the copy found on your device.

File Details

Main Info:

Product Name:	Driver Package Installer (DPInst)
Company Name:	Microsoft Corporation
MD5:	69d0ef2f5d448dd7f5e7c7686225c11c
Size:	909 KB
First Published:	2020-03-14 13:28:35 (6 years ago)
Latest Published:	2026-02-27 23:00:31 (3 months ago)

Analysis:

Status:	Undefined (on last analysis)
Analysis Date:	2026-02-27 23:00:31 (3 months ago)

Overview

Digital Signature

Signed By:	Kuzyakov Artur Vyacheslavovich IP
Status:	Invalid (digital signature could be stolen or file could be patched)

The signature on dpinst64.exe is not reported as trusted and valid. Invalid or suspicious signature data can indicate tampering, repackaging, or an unrelated file using copied publisher information.

Common Places:

%sysdrive%\web\driverpack\bin\tools\ddriver\packer.7z\bin

%sysdrive%\new folder\bin\tools\ddriver\packer.7z\bin

%sysdrive%\programs 2\driverpack.solutio\bin\tools\ddriver\packer.7z\bin

%sysdrive%\$recycle.bin\s-1-5-21-1182115722-1495027710-537087572-500\$rc73t8r\bin\tools\ddriver\packer.7z\bin

%sysdrive%\$recycle.bin\s-1-5-21-3342538075-3043915205-3348545814-1001\$rhumxpf\bin\tools\ddriver\packer.7z\bin

%profile%\downloads\driverpack_17.10.14-20032\bin\tools\ddriver\packer.7z\bin

%sysdrive%\2019 mart katilimsiz program\2019 mart katilimsiz program\samdrivers\bin\tools\ddriver\packer.7z\bin

%sysdrive%\driverpack.solution.17.10.14-19062\driverpack.solution.17.10.14-19062\driverpack_17.10.14-19062\bin\tools\ddriver\packer.7z\bin

%sysdrive%\??????\?????? ??? ??\bin\tools\ddriver\packer.7z\bin

%profile%\downloads\bin\tools\ddriver\packer.7z\bin

ThreatInfo has observed dpinst64.exe in the locations listed above. Files found in temporary folders, user profile folders, startup locations, or unusual application directories should be reviewed more carefully than files installed under a known program directory.

Geography:

	13.2%
	11.8%
	9.2%
	6.6%
	5.3%
	5.3%
	5.3%
	3.9%
	3.9%
	3.9%
	2.6%
	2.6%
	2.6%
	2.6%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%

The strongest geographic signal for this file is Brazil with 13.2% of observed hits. Geographic distribution can help identify targeted campaigns, regional software bundles, or where a file is most commonly reported.

OS Version:

Windows 10	66.7%
Windows 7	28.4%
Windows 8.1	2.5%
Windows 8	1.2%
Windows Embedded 8.1	1.2%

The most common operating system signal for dpinst64.exe is Windows 10 with 66.7% of observed hits. If your system differs from the common profile, check whether the file was introduced by a specific installer, archive, or removable device.

Analysis

PE Info:

dpinst64.exe is identified as pe for 64 systems. The subsystem is Windows GUI. PE header values are useful for triage, especially when they do not match the expected publisher, product, or release timeline.

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000100000000
Entry Address:	0x0006c354

PE Sections:

Name	Size of data	MD5
.text	530944	fcfc0455ead38edcd7f886b98f750a43
.data	2560	b3c5e0ac682de5c32efe422ac75b8020
.pdata	29696	ad4a9ccb01a838155067c0309f1ace62
.rsrc	357376	8d750854236ade4fda766f6f756829f6
.reloc	3584	167d6c44453b14914e6fc4712ac90af9

PE section names and hashes can reveal packing, injected resources, or unusual build artifacts. Sections with uncommon names, very large raw data, or hashes that differ from a trusted copy deserve additional review.

More information:

Search on Virustotal

copyright for information about dpinst64.exe