LaunchTM.exe

  • File Path: C:\Windows\system32\LaunchTM.exe
  • Description: Task Manager Launcher

Hashes

Type Hash
MD5 3BB01913A732B1628B4011724E752805
SHA1 7CD0744778A42001BCCE2652A2EB1009AC9CF598
SHA256 0DEE6B54087EA0982A3CD515E64C66B7670BF86DCA0A0DF742B8C00F17BF54E0
SHA384 89D39EEA991998BDBF994242311B8B2C6AE008F2E4911291BA41F261D38017C356016F8A3BBF5358512FB2BB63617AF4
SHA512 6DB0D67CB89408A779E85FF4F4A9CD6FD835BEB43BA6A7A25118D2D8413F5992F403C2D82E1014DB8EA878C46D77FA6A6FCAA396B5A62C972A4C6E7C71326EC4
SSDEEP 192:1gvRQ0/cEyT/uufqZgesMd1fskvBJG+WIqayW:kRsxT2lb/jBJTWIqayW
IMP AD4CEE994BCE4BEC755FC55C249B5C5F
PESHA1 B08FF8C9284CD977AF6DC54DFA04A1B493DBCC4E
PE256 BDCECE78073A4C0CF66C2C91D41E0836B5A9EC33624CC1546DFE30DD2C681498

Runtime Data

Child Processes:

Taskmgr.exe

Loaded Modules:

Path
C:\Windows\System32\combase.dll
C:\Windows\System32\GDI32.dll
C:\Windows\System32\gdi32full.dll
C:\Windows\System32\IMM32.DLL
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\system32\LaunchTM.exe
C:\Windows\System32\msvcp_win.dll
C:\Windows\System32\msvcrt.dll
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\RPCRT4.dll
C:\Windows\System32\SHELL32.dll
C:\Windows\System32\ucrtbase.dll
C:\Windows\System32\USER32.dll
C:\Windows\System32\win32u.dll

Signature

  • Status: Signature verified.
  • Serial: 3300000266BD1580EFA75CD6D3000000000266
  • Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: LaunchTM.exe
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.19041.1 (WinBuild.160101.0800)
  • Product Version: 10.0.19041.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: 0/72
  • VirusTotal Link: https://www.virustotal.com/gui/file/0dee6b54087ea0982a3cd515e64c66b7670bf86dca0a0df742b8c00f17bf54e0/detection/

File Similarity (ssdeep match)

File Score
C:\Windows\system32\LaunchTM.exe 80
C:\Windows\system32\LaunchTM.exe 71
C:\Windows\system32\LaunchTM.exe 71

MIT License. Copyright (c) 2020-2021 Strontic.