ttdplm.dll
- File Path:
C:\Windows\system32\ttdplm.dll
- Description: Time Travel Debugger PLM APIs
Hashes
| Type |
Hash |
| MD5 |
11335D005A7AE1027AE984A91BD25C1C |
| SHA1 |
2DB9A02728053C3EC467AEE59FFCFA67913D1AAF |
| SHA256 |
2F776655FA879AEC905AF1136921750B819A48A22788D26A3E804EFAE2D1A9EF |
| SHA384 |
941162686502D1551B1E60663B8A28E494CED63C8967C1BC140A2C79D6F5DF336146B3DD09132ED940CD27CB25EDEFFC |
| SHA512 |
16DE4DD660182A1CEBC9D206D30EED3F1770D2B0B5D8EC4E7928943B3632396ABC935375F32CCC2DECB92AD75B3FE5DB650503CDCCDCEE471AE455C252A7B8D5 |
| SSDEEP |
1536:MJUG/Jq7yj+ozQu9aVxWDZA1i1ApSEB/P6:MeUJLjyuIVQDi1i1AprB/i |
| IMP |
62727C143F35AA0090327AD9E7A480CB |
| PESHA1 |
8346A44D1F80EEB0ABB4CF986F9D457732AFB462 |
| PE256 |
D68FA4D3BC9295B1F41222EEDF3AC07B65DC552C7347FE61741E1FCBDD6DDEA5 |
DLL Exports:
| Function Name |
Ordinal |
Type |
GetPackageFromPid |
4 |
Exported Function |
SetPermisionsForFolder |
5 |
Exported Function |
GetMaxPackageNameLength |
3 |
Exported Function |
CreateModernAppToDelete |
1 |
Exported Function |
CreateModernAppToTrace |
2 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: TTDPlm.dll
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/71
- VirusTotal Link: https://www.virustotal.com/gui/file/2f776655fa879aec905af1136921750b819a48a22788d26a3e804efae2d1a9ef/detection/
MIT License. Copyright (c) 2020-2021 Strontic.