DmOmaCpMo.exe
- File Path:
C:\Windows\system32\DmOmaCpMo.exe - Description: Host Process for OMA-CP Client
Hashes
| Type | Hash |
|---|---|
| MD5 | 0591261A0070E218264C5B129C33AEF1 |
| SHA1 | DA782EC434914B8B60AED37272C822740D7F4A01 |
| SHA256 | C9FDA4B2B4851DB71D73E568B5D10BE577D525A2F2F68B83B2110862E3491B16 |
| SHA384 | B2DEEEE3AF18415564CA26DEF2D2F7F10665F0B5A5F6BCC007B369C27560A0C952992350CC8BD0B36E36A8F78D7A2F1D |
| SHA512 | A1EFF9BF327E0FF2B9E959851FF1D5537CD097E70C9BB292A04BECE8EB6BBFACD5078B792BF093C0743F09EA81564F6BA31259B622E38A2A74BB8BCABF8FC263 |
| SSDEEP | 768:SdT+WduLUspgE/FxwFqy5/LklXXbxRBn1EHd8d3G80DdbyAyy1bnKiOkPOq:SdTUgE9ZQLkpxRBniHdoa2AyanK/q |
| IMP | CF308790E494EF6E2671CD289C4EA3D2 |
| PESHA1 | 718C4A3B71AB4ACE7985F28B08D6474ADFA6702D |
| PE256 | 0A4D881B33A0E6266FC80D5D31D24DFC49E58886B5444A465432A9ACE3BB07AA |
Runtime Data
Loaded Modules:
| Path |
|---|
| C:\Windows\System32\advapi32.dll |
| C:\Windows\System32\bcrypt.dll |
| C:\Windows\System32\cfgmgr32.dll |
| C:\Windows\System32\combase.dll |
| C:\Windows\System32\CRYPT32.dll |
| C:\Windows\SYSTEM32\cryptsp.dll |
| C:\Windows\system32\DEVOBJ.dll |
| C:\Windows\system32\DMCmnUtils.dll |
| C:\Windows\system32\dmEnrollEngine.DLL |
| C:\Windows\system32\DmOmaCpMo.exe |
| C:\Windows\system32\DMProcessXMLFiltered.dll |
| C:\Windows\system32\dsclient.dll |
| C:\Windows\system32\iri.dll |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\System32\msvcp_win.dll |
| C:\Windows\system32\msvcp110_win.dll |
| C:\Windows\System32\msvcrt.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\OLEAUT32.dll |
| C:\Windows\system32\omadmapi.dll |
| C:\Windows\SYSTEM32\powrprof.dll |
| C:\Windows\System32\RPCRT4.dll |
| C:\Windows\System32\sechost.dll |
| C:\Windows\System32\ucrtbase.dll |
| C:\Windows\system32\USERENV.dll |
| C:\Windows\system32\XmlLite.dll |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266 - Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840 - Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
File Metadata
- Original Filename: DmOmaCpMo.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/75
- VirusTotal Link: https://www.virustotal.com/gui/file/c9fda4b2b4851db71d73e568b5d10be577d525a2f2f68b83b2110862e3491b16/detection
MIT License. Copyright (c) 2020-2021 Strontic.