wmprph.exe

File Path: C:\Program Files\Windows Media Player\wmprph.exe
Description: Windows Media Player Rich Preview Handler

Hashes

Type	Hash
MD5	`ED3CADC3DD73EA70D8713034E638C698`
SHA1	`B127BCFD63CE2776632500DA8887BD2E5519E8BA`
SHA256	`AB81411A2FCD8C9DD2D62D95E54854795405ED6D10450C56A8ED9E988EC9D254`
SHA384	`451132A5ACC86FD9E6E06D0A202ED6075FA4D817D9B91014C6584C6295A4EA950C49C72C8221D15C949BF6E0BDDD3DF1`
SHA512	`25EEEDA0FE51B384763AEB93955D05C81548153183F461DC6091028DC062D773876A7DE45727864D9EFE50E7E109875C3BB7DE6E5789C20E0B4AA82D97625A24`
SSDEEP	`1536:XJHsQdS5jEViBzL3QFcCcVW7kY1yTF9g34TmPSJEb7dzGG/nL:ZpmhBX3oTcMh1yTkkwgEvB`
IMP	`842B9341196BC74EF2D7F5D061D8D10E`
PESHA1	`939AE68D94D2FA481539D0CC9737B99E6481D610`
PE256	`0C1B7A5754196684B3EB0205D1E42ABDBFF84B7F0DD4B59D5AD13BA8457A85A5`

Runtime Data

Open Handles:

Path	Type
(RW-) C:\Users\user\Documents	File
\BaseNamedObjects__ComCatalogCache__	Section
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0	Section
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0	Section

Loaded Modules:

Path
C:\Program Files\Windows Media Player\wmprph.exe
C:\Windows\System32\ADVAPI32.dll
C:\Windows\System32\GDI32.dll
C:\Windows\System32\gdi32full.dll
C:\Windows\System32\KERNEL32.DLL
C:\Windows\System32\KERNELBASE.dll
C:\Windows\System32\msvcp_win.dll
C:\Windows\System32\msvcrt.dll
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\RPCRT4.dll
C:\Windows\System32\sechost.dll
C:\Windows\System32\ucrtbase.dll
C:\Windows\System32\win32u.dll

Signature

Status: Signature verified.
Serial: 3300000266BD1580EFA75CD6D3000000000266
Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: wmprph.exe
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 12.0.19041.329 (WinBuild.160101.0800)
Product Version: 12.0.19041.329
Language: English (United States)
Legal Copyright: Microsoft Corporation. All rights reserved.
Machine Type: 64-bit

File Scan

VirusTotal Detections: 0/69
VirusTotal Link: https://www.virustotal.com/gui/file/ab81411a2fcd8c9dd2d62d95e54854795405ed6d10450c56a8ed9e988ec9d254/detection/

MIT License. Copyright (c) 2020-2021 Strontic.