dbengprx.exe
- File Path:
C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\dbengprx.exe
- Description: Microsoft Windows Debugger Transport Proxy Server
Hashes
| Type |
Hash |
| MD5 |
CDB45C99D88514AEF61951A476E90FA8 |
| SHA1 |
8909E36F7DF4D607CEF27D68D113DE3C537DC3B0 |
| SHA256 |
0D535A4065BA70EF55D2C996F1AE1D7EC07FF90FF955067EEA9D8F6D411C44E7 |
| SHA384 |
A47CB873EDDF46CD09FB314D9D7D9DCD9131CF1AB8CB2BCF9AC335E39B5231E166478DE8DB5EF617658E6523E449CD94 |
| SHA512 |
A3863994FCF0770C8A9B48C78A356B6706FA65B989D4439579DD19A035602A2F93F14B08FF5DA874A0420764F85534502DE7779EF3F068CAF3067E2D6BF49CD2 |
| SSDEEP |
3072:sNrYdnUBMOXYR1UjJLbzmpmTeKNtKWoSJlIqarNl:sNrDM8UUVXamlIqar |
| IMP |
FFD1762CC41F187D04C2E43B1563CE2F |
| PESHA1 |
F3654EB9615975E0D4E1E470A0EA57952AE42070 |
| PE256 |
56AA7BA628AF65B80D901997D46136A684EDE59EA2B1A9E3B4CB4347913928C8 |
Runtime Data
Usage (stdout):
Invalid Command Line: Usage: dbengprx [-p] -c <transport> -s <transport>
transport: tcp | npipe
for tcp use: port=<socket port #>
for npipe use: pipe=<name of pipe>
Example: machine A = server, B = proxy, C = client
A: start cdb -server tcp:port=1234 <...>
B: start dbengprx -c tcp:port=1234,server=A -s tcp:port=1235
C: start cdb -remote tcp:port=1235,server=B
Loaded Modules:
| Path |
| C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\dbengprx.exe |
| C:\Windows\System32\ADVAPI32.dll |
| C:\Windows\System32\GDI32.dll |
| C:\Windows\System32\gdi32full.dll |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\System32\msvcp_win.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\ucrtbase.dll |
| C:\Windows\System32\USER32.dll |
| C:\Windows\System32\win32u.dll |
Signature
- Status: Signature verified.
- Serial:
33000002CF6D2CC57CAA65A6D80000000002CF
- Thumbprint:
1A221B3B4FEF088B17BA6704FD088DF192D9E0EF
- Issuer: CN=Microsoft Code Signing PCA 2010, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: dbengprx.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/75
- VirusTotal Link: https://www.virustotal.com/gui/file/0d535a4065ba70ef55d2c996f1ae1d7ec07ff90ff955067eea9d8f6d411c44e7/detection
MIT License. Copyright (c) 2020-2021 Strontic.