dtdump.exe
- File Path:
C:\Windows\SysWOW64\dtdump.exe
- Description: DTDUMP.EXE
Hashes
| Type |
Hash |
| MD5 |
7A9343CFA9D5F9FBEB611628A1682D96 |
| SHA1 |
66AFC2E9989A6A8646C7AAE6D61E749BDCAF4763 |
| SHA256 |
C3FD85CCA8B5CA64EEC2205D356BB6A4D007057E9E340B44916E80BE7F327246 |
| SHA384 |
9BC014C71BC1D584851F2914E68064B2F359C24A8B05123E579BBFFE3FA552608946AC7B09E2C531A4E36207A09E63D7 |
| SHA512 |
27CF57671536C872F3FA889740E61C494AA34F797E3E5F7066C9C87BFC7E5140BAC7DDCB68FE820292A886683588DFBAC5FC2CF75956D9A054DD018AD61720CC |
| SSDEEP |
1536:NNp9R862jRGDCdFz4jzbaDA9xSfJiobRLK+69hlSj/Mptryg8AfOd4oOyzvQ+aj9:NNp904mdFsjzd8QobRLKL9hukHfHFRZb |
| IMP |
4A03FD182BD0DDE1234B51ECCE34E598 |
| PESHA1 |
82A129ACEDDFEFBAC4ACB38D1C95D37062391373 |
| PE256 |
94154A364E2A8411D99EFF76E6C0287861AF95ACE7F4B13006686AB4D7A3DC8E |
Runtime Data
Loaded Modules:
| Path |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\wow64.dll |
| C:\Windows\System32\wow64cpu.dll |
| C:\Windows\System32\wow64win.dll |
| C:\Windows\SysWOW64\dtdump.exe |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: DTDUMP.EXE
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.662 (WinBuild.160101.0800)
- Product Version: 10.0.19041.662
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/76
- VirusTotal Link: https://www.virustotal.com/gui/file/c3fd85cca8b5ca64eec2205d356bb6a4d007057e9e340b44916e80be7f327246/detection
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.