tapisrv.dll

  • File Path: C:\Windows\SysWOW64\tapisrv.dll
  • Description: Microsoft Windows(TM) Telephony Server

Hashes

Type Hash
MD5 4F01C8A7E7F2F9AF33E84248D94150A8
SHA1 A6F9DBD20EFB55093AD6BC02EB3D36BCADE0B063
SHA256 270506ED99ED87C7A8CE947A50A401D7A17B88F90BE19BF1A1E57285F04E5A94
SHA384 88326AF795B7E3C53ED3C56C08202B7B0176ED47023775D61F6AAA7700797B749AA5521BA39386116177DC35E554D668
SHA512 16E172FEDF0147C5B7EA3839426CDE150BCF5D4AF57F4ED6503BF07DC70C3DFB7D724494ECACF831C61E5AB933563458ED0492E0D436836C45D222E903CA521D
SSDEEP 3072:r4nFUyhOq14PU+jJIOhJEq1b1fDPdjBpvVYHZdxwtDcao660oAZ7TNZ8JGbuzUsk:r4PnCEq15fjp9GZdyo6wy9Vsb/YF
IMP F83A10B7B915816DD8186453245A64FF
PESHA1 7D950CC827B246B4C4F6FB3DD8B3AAD5B227B7E3
PE256 7A1CAB44F50E591BAC936BF29E48C74D003848A90841AF14AB84A6AD5F38FD3E

DLL Exports:

Function Name Ordinal Type
SvchostPushServiceGlobals 2 Exported Function
ServiceMain 1 Exported Function

Signature

  • Status: Signature verified.
  • Serial: 3300000266BD1580EFA75CD6D3000000000266
  • Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: TAPISRV.EXE.MUI
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.19041.1 (WinBuild.160101.0800)
  • Product Version: 10.0.19041.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/67
  • VirusTotal Link: https://www.virustotal.com/gui/file/270506ed99ed87c7a8ce947a50a401d7a17b88f90be19bf1a1e57285f04e5a94/detection/

Possible Misuse

The following table contains possible examples of tapisrv.dll being misused. While tapisrv.dll is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
malware-ioc nukesped_lazarus .tapisrv.dll``{:.highlight .language-cmhg} © ESET 2014-2018

MIT License. Copyright (c) 2020-2021 Strontic.