dmcfghost.exe
- File Path:
C:\Windows\system32\dmcfghost.exe
- Description: Host Process for Push Router Client of OMA-CP
Hashes
| Type |
Hash |
| MD5 |
A245EE3F5E935B53D6CFE3491FDAC745 |
| SHA1 |
C9307AD21E9901D7A9C24EDFCDC34BEA83C09BEB |
| SHA256 |
460D46FD4F0196D3483D5C3831017C931B8E34837CC873FB68C1D3239907F455 |
| SHA384 |
C5804A326D07CBAE3ADE6E75CE84E7525B32B606F611E5370238DD440587CFB063383CDAB4ADA01C1CDEDAD2800B34D4 |
| SHA512 |
55647E67E5E1AE9C5CFD232C6286DB87267FD28812842A583BBD43639C31DE73AA031F4AF138FC4A544DA306343041BC9FE6EBEB3F9B09DA33D6259BBFE7A245 |
| SSDEEP |
768:b55BaJh8bJtYVO0Y2BIybL9mg4KorWhl0vqyMmAF8ZfQ:bBOAf0Y2KWh+SyMmK8ZfQ |
| IMP |
6FCA673968906FA1EB9C396AD8DFDF7E |
| PESHA1 |
C18228A9DA9184C4DDDAC970FB35A04E0E5CBB1A |
| PE256 |
1D05C65CA92DB1AB52B91800FAC5BE86012213C0416173B6FA652FC6DA0F36D0 |
Runtime Data
Loaded Modules:
| Path |
| C:\Windows\System32\combase.dll |
| C:\Windows\System32\CRYPT32.dll |
| C:\Windows\SYSTEM32\cryptsp.dll |
| C:\Windows\system32\dmcfghost.exe |
| C:\Windows\system32\DMCmnUtils.dll |
| C:\Windows\system32\DMPushProxy.dll |
| C:\Windows\system32\dmxmlhelputils.dll |
| C:\Windows\system32\dsclient.dll |
| C:\Windows\system32\iri.dll |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\System32\msvcp_win.dll |
| C:\Windows\system32\msvcp110_win.dll |
| C:\Windows\System32\msvcrt.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\OLEAUT32.dll |
| C:\Windows\system32\omadmapi.dll |
| C:\Windows\SYSTEM32\powrprof.dll |
| C:\Windows\System32\RPCRT4.dll |
| C:\Windows\System32\sechost.dll |
| C:\Windows\System32\ucrtbase.dll |
| C:\Windows\system32\XmlLite.dll |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: dmcfghost.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/75
- VirusTotal Link: https://www.virustotal.com/gui/file/460d46fd4f0196d3483d5c3831017c931b8e34837cc873fb68c1d3239907f455/detection
MIT License. Copyright (c) 2020-2021 Strontic.