File details
File name: snmptrap.exe
Name: SNMP Trap
Description: Microsoft® Windows® Operating System
Version: 6.1.7600.16385 (win7_rtm.090713-1255)
Product version: 6.1.7600.16385
Size: 12.5 KB
Original file name: snmptrap.exe.mui
Windows file protection:
Yes
Resource utilization
 | CPU utilization averages |
Total CPU: 0.0018227732%
Privileged CPU:
0.0013670799%

User CPU:
0.00045569330115%

Privileged CPU time: 93.6 ms
Privileged CPU time /min: 0 ms
CPU cycle count:
290,017,568
 | Memory utilization averages |
Committed memory:
22.62 MB
Peak committed memory: 23.58 MB
Paged memory:
1.12 MB
Peak paged memory: 1.14 MB
Paged system memory:
44.3 KB
Non-paged system memory: 5.73 KB
Working set memory:
308 KB
Peak working set memory: 3.56 MB
Min working set memory: 280 KB
Private memory:
1.12 MB
Page faults:
1,105
Page faults /min: 0
 | Process I/O averages |
Total read operations:
2
Total read transfer: 8 KB
Total other operations:
1,105
Total other transfer: 11.23 KB
Resources
Handle count average: 94
Thread count average: 7
Thread resource averages
sechost.dll

Total CPU: 0.006212681503%
Privileged CPU: 0.004437629645%
User CPU: 0.001775051858%
CPU Cycle count /sec: 82,299
Module memory size: 100 KB
Total CPU: 0.000887518051%
Privileged CPU: 0.000887518051%
User CPU: 0.000000000000%
CPU Cycle count /sec: 13,215
Module memory size: 24 KB
Process details
Runs as (owner): Local Service
Integrety level: System
Windows platform: 32-bit
Runs as a service: Yes
Parent Process
Process Command
C:\windows\System32\snmptrap.exe
Service details
Name: Παγίδευση SNMP
Service name: SNMPTRAP
Service type:
Win32OwnProcess
Description: “Παραλαμβάνει μηνύματα παγίδευσης που έχουν δημιουργηθεί από τοπικούς ή απομακρυσμένους παράγοντες SNMP και προωθεί τα μηνύματα σε προγράμματα διαχείρισης SNMP που εκτελούνται σε αυτόν τον υπολογιστή. Αν η υπηρεσία αυτή διακοπεί, τα προγράμματα SNMP σε αυτόν τον υπολογιστή δεν θα λαμβάνουν μηνύματα παγίδευσης SNMP. Αν η υπηρεσία απενεργοποιηθεί, οι υπηρεσίες που εξαρτώνται ρητά από αυτήν δεν θα μπο”
Network connectivity
UDP: LISTENING on port 162
Image hashes
MD5: 6a984831644eca1a33ffeae4126f4f37
SHA-1: c450204e473fb913223da99af28ec7bc5024e28c
SHA-256: 753e23d2b33d47c52c05d892b052cfd96d93b97fb6e9fcb58ef1e4c4a125bf78
PE image details
Subsystem: Windows Console
Langauge*: Microsoft Visual C++
File entropy: 5.63683
File packed: No
Import Table
advapi32.dll

SetServiceStatus
FreeSid
AddAccessAllowedAce
InitializeAcl
GetLengthSid
AllocateAndInitializeSid
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegisterServiceCtrlHandlerA
StartServiceCtrlDispatcherA
kernel32.dll

SetEvent
LeaveCriticalSection
CloseHandle
DisconnectNamedPipe
ResetEvent
GetOverlappedResult
GetLastError
WriteFile
EnterCriticalSection
GlobalAlloc
GlobalFree
WaitForSingleObject
GetTickCount
ConnectNamedPipe
CreateNamedPipeA
DeleteCriticalSection
CreateEventA
InitializeCriticalSection
RegisterApplicationRestart
GetCommandLineW
HeapSetInformation
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
GetModuleHandleA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InterlockedCompareExchange
Sleep
InterlockedExchange
msvcrt.dll
ws2_32.dll
