home

TraceDmp.exe

Microsoft Windows 2000 Operating System

Microsoft Windows 2000 Test

Publisher:
Microsoft Corporation  (signed by Microsoft Windows 2000 Test)

Product:
Microsoft(R) Windows (R) 2000 Operating System

Description:
Dump event traces to CSV

Version:
5.00.2183.1

MD5:
c8369ff38b3043f5bd02f1b195856275

SHA-1:
01b76e648c251dea7696b3e7e853348bf794f3bf

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 11:28:43 AM UTC  (today)

File size:
105.7 KB (108,240 bytes)

Product version:
5.00.2183.1

Copyright:
Copyright (C) Microsoft Corp. 1981-1999

Original file name:
TraceDmp.Exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\reskit\tracedmp.exe

Digital Signature
Signed by:
Microsoft Windows 2000 Test

Authority:
Microsoft Test PCA Authority

Valid from:
10/17/1999 8:00:00 AM

Valid to:
3/15/2000 7:00:00 AM

Subject:
OU=Microsoft Corporation, OU=Copyright (c) 1999 Microsoft Corp., CN=Microsoft Windows 2000 Test

Issuer:
CN=Microsoft Test PCA Authority, OU=Microsoft Corporation, OU=Copyright (c) 1999 Microsoft Corp.

Serial number:
191E9A7445DE4BFE8303306A9C74A36B

File PE Metadata
Compilation timestamp:
11/19/1999 11:52:15 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
5.12

CTPH (ssdeep):
1536:6F6r1J5HJTCSIQzX9xBZK6e6MWmUtyTxioneB84iEXz+:F59CqNxDK6BftyTxioneAu+

Entry address:
0x4F00

Entry point:
55, 8B, EC, 6A, FF, 68, D8, 23, 00, 01, 68, 28, 6E, 00, 01, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, C4, F0, 53, 56, 57, 89, 65, E8, FF, 15, 40, 10, 00, 01, 33, D2, 8A, D4, 89, 15, 4C, F9, 00, 01, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 48, F9, 00, 01, C1, E1, 08, 03, CA, 89, 0D, 44, F9, 00, 01, C1, E8, 10, A3, 40, F9, 00, 01, E8, 94, 1D, 00, 00, 85, C0, 75, 0A, 6A, 1C, E8, E9, 00, 00, 00, 83, C4, 04, C7, 45, FC, 00, 00, 00, 00, E8, 7A, 1B, 00, 00, E8, 65, 1B, 00, 00, FF, 15, 3C, 10, 00...
 
[+]

Entropy:
5.4675

Developed / compiled with:
Microsoft Visual C++

Code size:
45 KB (46,080 bytes)

Scan TraceDmp.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.