dtdump.exe
- File Path:
C:\Windows\SysWOW64\dtdump.exe
- Description: DTDUMP.EXE
Hashes
| Type |
Hash |
| MD5 |
BA0B3A8DC23346DDB9D6AE92736DDA9F |
| SHA1 |
7D19F0607CA337A23A74383B9AD7C2CEF0CC19A5 |
| SHA256 |
4B440553F1F1B69E3CAD4DE540FDCF3569F4205AC2ACCCEEC0689E069B446161 |
| SHA384 |
90A60E686E7D17307ACD8CEA179139EE92B44B1F4DFBCCAC78AF3B8B5163F032D2800E24B1B8469ECBA53C1AE9CE31BE |
| SHA512 |
67D35EBF0D357FC7D86DA9663951DEDAE0BAB6049A27666E8E2B0DB04E0316806C89B0E9B18CE3D81B26737ECE32798158E5D1A3837F3C366988B043E9BFEF11 |
| SSDEEP |
1536:5sCWpbeR866jRHDCdlkpukQ+17A9xSfJilbRKKfGMphSBOuQZEofOd4oOyzvQ+aI:5sCWpbeQ5mdlk4kQZ8QlbRKKfrpElofo |
| IMP |
4A03FD182BD0DDE1234B51ECCE34E598 |
| PESHA1 |
4303675BAD8EFEEE0F56807557ECD0E9F5EDA533 |
| PE256 |
187F0112EFF61122E1A7F3458427B1764F4EE1664797D2236F432E42B1E2FCCA |
Runtime Data
Loaded Modules:
| Path |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\wow64.dll |
| C:\Windows\System32\wow64cpu.dll |
| C:\Windows\System32\wow64win.dll |
| C:\Windows\SysWOW64\dtdump.exe |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: DTDUMP.EXE
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.488 (WinBuild.160101.0800)
- Product Version: 10.0.19041.488
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/74
- VirusTotal Link: https://www.virustotal.com/gui/file/4b440553f1f1b69e3cad4de540fdcf3569f4205ac2accceec0689e069b446161/detection
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.