MpDlpCmd.exe

  • File Path: C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MpDlpCmd.exe
  • Description: Microsoft Malware Protection DLP Command Line Utility

Hashes

Type Hash
MD5 36505607C5FE18E2B6E868E5ADF6BD94
SHA1 1490B808661E79275F34CFBE578465096CD10530
SHA256 14EDB56C13057A6C5E0C007D4D7009F6E55E3A4F476B19F74795CFFA5AD83F5B
SHA384 5C3E76D6C7E16CD423B50B363C1742F9A9EB9817A4C45A99AA8F764AE0E93B7C95BB429455B44FCF578BA3E04524E124
SHA512 C6DA6433234FFB6AC1BE0CC5E26C2D7EC0B1660624623B1635188D795B1751E57691D1495738122C69CC8352F4E6191FE0130D8A01C1E1A68ECBB2B042C00B71
SSDEEP 6144:zPKePpKyzob2nBRmiTVVmVVV8VVNVVVcVVVxVVVPVVlVVVRVVVtVVWV60jVLVVOW:zPKeQyEaBTD

Runtime Data

Usage (stdout):

MpDlpCmd: Failed with hr = 0x80070667.MpDlpCmd: Invalid command line argument

Usage: MpDlpCmd -<Command>

Child Processes:

conhost.exe

Signature

  • Status: Signature verified.
  • Serial: 330000024A0E8AFDF15C662D2B00000000024A
  • Thumbprint: 96384A7F5F1C438F32E2454697DC6D312A74517B
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows Publisher, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: MpDlpCmd.exe
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 4.18.2004.6 (WinBuild.160101.0800)
  • Product Version: 4.18.2004.6
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.

File Similarity (ssdeep match)

File Score
C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpDlpCmd.exe 74
C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2006.10-0\MpDlpCmd.exe 79
C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\MpDlpCmd.exe 77
C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2008.9-0\MpDlpCmd.exe 75
C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2009.7-0\MpDlpCmd.exe 79

MIT License. Copyright (c) 2020-2021 Strontic.