CompMgmtLauncher.exe

  • File Path: C:\WINDOWS\system32\CompMgmtLauncher.exe
  • Description: Computer Management Snapin Launcher

Hashes

Type Hash
MD5 E0861FA9E0A4B441C6A11405D12D0C30
SHA1 91C9D2E49842167CA38A9D442C717DFDE193EEA8
SHA256 F14DBE8CFFBCA080D12051219F8039F9AB4A6C2C7ECDD524814C2CFA59290149
SHA384 65B6A8F538F05B1997B567868B523C2B4DD27DBBE23C12382611C6FA996E18833E2B9121CA633210C2D02746564351A4
SHA512 2B3EC90CAB5708B92C6AE13A4B93AEF133F3F06715BC55E3183D4ED4234744EB55A9B5BFC579B18381B15A32641EFA7A5ED05946EA156BAF2F556757232E772C
SSDEEP 1536:CVEevZTB6bV6G86RDAm7LCmo3Dbehp9hmi+wRlOo+vi6Uf:JUTB6ppR8m7LC5DIpjmmRco+Q

Runtime Data

Child Processes:

mmc.exe

Signature

  • Status: Signature verified.
  • Serial: 330000023241FB59996DCC4DFF000000000232
  • Thumbprint: FF82BC38E1DA5E596DF374C53E3617F7EDA36B06
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: CompMgmtLauncher.exe.mui
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.18362.1 (WinBuild.160101.0800)
  • Product Version: 10.0.18362.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.

File Similarity (ssdeep match)

File Score
C:\Windows\system32\CompMgmtLauncher.exe 35
C:\WINDOWS\system32\CompMgmtLauncher.exe 33
C:\Windows\system32\CompMgmtLauncher.exe 38
C:\windows\system32\CompMgmtLauncher.exe 30
C:\Windows\system32\CompMgmtLauncher.exe 43
C:\Windows\system32\ServerManagerLauncher.exe 33
C:\Windows\system32\ServerManagerLauncher.exe 41
C:\windows\system32\ServerManagerLauncher.exe 35

Possible Misuse

The following table contains possible examples of CompMgmtLauncher.exe being misused. While CompMgmtLauncher.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
malware-ioc win_apt_invisimole_uac_bypass.yml - '\CompMgmtLauncher.exe' © ESET 2014-2018

MIT License. Copyright (c) 2020-2021 Strontic.