rmttpmvscmgrsvr.exe
- File Path:
C:\Windows\system32\rmttpmvscmgrsvr.exe - Description: TPM Virtual Smart Card Manager DCOM Server
Hashes
| Type | Hash |
|---|---|
| MD5 | D4D16AC9ADC3F85D042622A4B9BFD8F6 |
| SHA1 | 7300C398073E4297C9F07D57968A8960E4BDBDB4 |
| SHA256 | 63C358D7BBA1AD1C3D015EF625FDF659AE527595C82366866AB557D1CDC87B06 |
| SHA384 | 976154E830FE1365002FB4CA5381F2F81710F44AAC27F57B673103A197D724DA73F186D031ED57E8324020872F637DAA |
| SHA512 | 92136064C0EA414CC8DBCEDC484E422CC16FE318FAF0849A419146367E8DB42A19A0E0AA9B6F84728C9BF8C5061D00FF566BA416C2E5888CF1230ED500E8EC6A |
| SSDEEP | 3072:LWmZBgGFCvMIU/Zl4Y8uMVhvmbPEzmTO:JXhWAl4Y8uMV9mwz |
| IMP | 01170AF3AC64C08EF5BEFED4FEBE2E2A |
| PESHA1 | 6E94DEDFF5FB47CC7C39C6BDDD688C8C50F3541C |
| PE256 | 70131232F2AA185E574774512E6F5E0BA88FB350B1B2E5B905AE1071C29BD77E |
Runtime Data
Open Handles:
| Path | Type |
|---|---|
| (RW-) C:\Users\user | File |
| \BaseNamedObjects__ComCatalogCache__ | Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000004.db | Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000004.db | Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*cversions.2.ro | Section |
| \BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 | Section |
| \BaseNamedObjects\NLS_CodePage_437_3_2_0_0 | Section |
| \RPC Control\DSEC734 | Section |
Loaded Modules:
| Path |
|---|
| C:\Windows\System32\ADVAPI32.dll |
| C:\Windows\System32\bcrypt.dll |
| C:\Windows\System32\bcryptPrimitives.dll |
| C:\Windows\System32\cfgmgr32.dll |
| C:\Windows\System32\clbcatq.dll |
| C:\Windows\System32\combase.dll |
| C:\Windows\system32\DEVOBJ.dll |
| C:\Windows\System32\GDI32.dll |
| C:\Windows\System32\gdi32full.dll |
| C:\Windows\System32\IMM32.DLL |
| C:\Windows\System32\kernel.appcore.dll |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\System32\msvcp_win.dll |
| C:\Windows\System32\msvcrt.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\OLEAUT32.dll |
| C:\Windows\System32\profapi.dll |
| C:\Windows\system32\rmttpmvscmgrsvr.exe |
| C:\Windows\System32\RPCRT4.dll |
| C:\Windows\System32\sechost.dll |
| C:\Windows\System32\SETUPAPI.dll |
| C:\Windows\System32\ucrtbase.dll |
| C:\Windows\System32\USER32.dll |
| C:\Windows\System32\win32u.dll |
| C:\Windows\system32\WinSCard.dll |
Signature
- Status: Signature verified.
- Serial:
33000001C422B2F79B793DACB20000000001C4 - Thumbprint:
AE9C1AE54763822EEC42474983D8B635116C8452 - Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
File Metadata
- Original Filename: RmtTpmVscMgrSvr.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 1.00 (WinBuild.160101.0800)
- Product Version: 10.0.17763.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/71
- VirusTotal Link: https://www.virustotal.com/gui/file/63c358d7bba1ad1c3d015ef625fdf659ae527595c82366866ab557d1cdc87b06/detection/
MIT License. Copyright (c) 2020-2021 Strontic.