tpmvscmgrsvr.exe
- File Path:
C:\WINDOWS\system32\tpmvscmgrsvr.exe
- Description: TPM Virtual Smart Card Manager COM Server
Hashes
| Type |
Hash |
| MD5 |
DAEFE970186E4C131E0477CE274A7A9C |
| SHA1 |
382A272DC1A33F765594A486BA16927608C0DCBC |
| SHA256 |
C16E9FCFD9726E2B9428A2B1A8378B544E3DBCBF06E2CFBE5D7D8DBD7AF5F582 |
| SHA384 |
B94DF2704B6E376C23BB70F198963C997BD20BC96E07D5D308F68AECCCADB845F6D8F0768BD96262FF5D75577C6B686D |
| SHA512 |
D09EF111E1A28EA9AB1C731D2B2C7F73B36F91442244E976A98DB7355058369BDBF11B5BB0CA0501474337F6F386438EAE34D9B5D2E9E4FD8C29733A180F1E5E |
| SSDEEP |
3072:RoFptcIaihvOMpWBxdgByBETWV7koBSxkpyTqLDJ:OwI9hvnpWBxdBBE21QxTqL |
| IMP |
C4B6E5AF3495195F945C7E3283A1A0D9 |
| PESHA1 |
BEFA158F2B4ECB3103EB97B777E8AFDC9540175F |
| PE256 |
7E403EA52D227C08BA61DB193CA6B85C7F72F8529E157E6CA2C92C68ED4098CB |
Runtime Data
Open Handles:
| Path |
Type |
| (R-D) C:\Windows\System32\en-US\tpmvscmgrsvr.exe.mui |
File |
| (RW-) C:\Windows\System32 |
File |
| \BaseNamedObjects__ComCatalogCache__ |
Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000001.db |
Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000001.db |
Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*cversions.2.ro |
Section |
| \Sessions\2\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 |
Section |
| \Sessions\2\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 |
Section |
Loaded Modules:
| Path |
| C:\WINDOWS\System32\KERNEL32.DLL |
| C:\WINDOWS\System32\KERNELBASE.dll |
| C:\WINDOWS\SYSTEM32\ntdll.dll |
| C:\WINDOWS\system32\tpmvscmgrsvr.exe |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED
- Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: TpmVscMgrSvr.exe.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 1.00 (WinBuild.160101.0800)
- Product Version: 10.0.22000.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/73
- VirusTotal Link: https://www.virustotal.com/gui/file/c16e9fcfd9726e2b9428a2b1a8378b544e3dbcbf06e2cfbe5d7d8dbd7af5f582/detection
MIT License. Copyright (c) 2020-2021 Strontic.