CredentialEnrollmentManager.exe

File Path: C:\Windows\system32\CredentialEnrollmentManager.exe
Description: Credential Enrollment Manager

Hashes

Type	Hash
MD5	`4B40E06424244941C1B677B41ABA4CF7`
SHA1	`8188C47CC1F6747BEDDE86FDEC346AF2E67B1801`
SHA256	`2266BE2B8D50DE5D366E2404F604F7A63A50233EB5425727106ECB3C14528AFD`
SHA384	`9CD375011CE55DC7388A950045AB09E67A858969004A3CE22FF61FC3C6346E232FB0CD0E81B9CBD3AE282C2F79644B4D`
SHA512	`8683D703A9F76A72E61CE0DA263FF8CC5137F7D53602D5FDDD028D72F2B9349A3BA4E15ED9A9B60919EFD7D0A88D97E4512527E6C1B9A8E61A858CABD689B674`
SSDEEP	`6144:EgipPrEoTp52D7xVygFf2NFGA5LE/2XuAi9ewVdBhQ7agAFCu9:PixrE44D74Xt5Y/gIAw1e2Ic`
IMP	`C6ACA091B462BDE5E8A027CC4D904E49`
PESHA1	`858FFA1C24000E125DDE8A4959A8520ACEDC4F97`
PE256	`8B058DC34FFF2A04CF6409D51D7DD3AA859A98BF9D806C4EEF7777889C6FA3F4`

Runtime Data

Loaded Modules:

Path
C:\Windows\System32\combase.dll
C:\Windows\system32\CredentialEnrollmentManager.exe
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\RPCRT4.dll
C:\Windows\System32\sechost.dll
C:\Windows\System32\ucrtbase.dll

Signature

Status: Signature verified.
Serial: 3300000266BD1580EFA75CD6D3000000000266
Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: CredentialEnrollmentManager.exe.mui
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 10.0.19041.1 (WinBuild.160101.0800)
Product Version: 10.0.19041.1
Language: English (United States)
Legal Copyright: Microsoft Corporation. All rights reserved.
Machine Type: 64-bit

File Scan

VirusTotal Detections: 0/68
VirusTotal Link: https://www.virustotal.com/gui/file/2266be2b8d50de5d366e2404f604f7a63a50233eb5425727106ecb3c14528afd/detection/

MIT License. Copyright (c) 2020-2021 Strontic.