omadmprc.exe

• File Path: C:\Windows\system32\omadmprc.exe
• Description: Host Process for Push Router Client of OMA-DM

Hashes

Type	Hash
MD5	0C2094F5317EB0D8D5D1759F8C0D43EC
SHA1	238C97AF3A75A9A48DB4CB72326DEA29FC5E0984
SHA256	16DC4D82C9F77E82378226BA4DD9314F2A49FDBB6B0456FCDABA9182AA8C4AB0
SHA384	4569A00EBDB64D9C61B66C472D5969ADF2A2841783C8F9337D8DD902B032777AAA625035419CB46A4218F9A137995A2D
SHA512	F314470BA9CE51F2399E6165E4AB94717A171F7B9765B5D0D22C665D60CD02011438B84FD68F73F56E374B9FE1F73C575FA9EB820B9B4AEC73B0617840C38323
SSDEEP	1536:fuWEbAR0mVztOE/RTZSGFFJBmFIwRdH7y/+iTdTnia1Gomz5j1W7Nij0BTs:fGoBsQ9S8eFvdH7w+cdTniqjON1SiCTs
IMP	33B843B0DAF2BCAFE24F6EF6B08855DD
PESHA1	F8F491475F55930428B1A2CD167FC61BECB55A0A
PE256	2521782150243CC50F68CEB3365B8F1C341F23435F4AC0F6DFA148A395386780

Runtime Data

Loaded Modules:

Path
C:\Windows\System32\combase.dll
C:\Windows\System32\CRYPT32.dll
C:\Windows\SYSTEM32\cryptsp.dll
C:\Windows\system32\DMCmnUtils.dll
C:\Windows\system32\DMPushProxy.dll
C:\Windows\system32\iri.dll
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\System32\msvcp_win.dll
C:\Windows\system32\msvcp110_win.dll
C:\Windows\System32\msvcrt.dll
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\OLEAUT32.dll
C:\Windows\system32\omadmapi.dll
C:\Windows\system32\omadmprc.exe
C:\Windows\SYSTEM32\powrprof.dll
C:\Windows\System32\RPCRT4.dll
C:\Windows\System32\sechost.dll
C:\Windows\System32\ucrtbase.dll

Signature

• Status: Signature verified.
• Serial: 3300000266BD1580EFA75CD6D3000000000266
• Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
• Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
• Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

• Original Filename: omadmprc.exe
• Product Name: Microsoft Windows Operating System
• Company Name: Microsoft Corporation
• File Version: 10.0.19041.1 (WinBuild.160101.0800)
• Product Version: 10.0.19041.1
• Language: English (United States)
• Legal Copyright: Microsoft Corporation. All rights reserved.
• Machine Type: 64-bit

File Scan

• VirusTotal Detections: 0/75
• VirusTotal Link: https://www.virustotal.com/gui/file/16dc4d82c9f77e82378226ba4dd9314f2a49fdbb6b0456fcdaba9182aa8c4ab0/detection

File Similarity (ssdeep match)

File	Score
C:\Windows\system32\omadmprc.exe	35

MIT License. Copyright (c) 2020-2021 Strontic.