home

activemailbho64.dll

ActiveMail Addon

ActivePath Ltd.

Publisher:
ActivePath Ltd.  (signed and verified)

Product:
ActiveMail Addon

Description:
ActiveMail BHO

Version:
5.8.17.0

MD5:
34ba8388c3eb72c097c4f87c7a6184c8

SHA-1:
97d009d11f0ceff670a9c0a29f667a835c72681c

SHA-256:
c1808a8d4ff12289f5ed2f81ff891975202e0de4e64859bb5c77c5131cbeec28

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/19/2024 4:25:52 PM UTC  (today)

Scan engine
Detection
Engine version

IKARUS anti.virus
Trojan.Win32.Agent
t3scan.1.9.5.0

File size:
354.9 KB (363,376 bytes)

Product version:
5.8.17.0

Copyright:
(c) ActivePath Ltd.. All rights reserved.

Original file name:
ActiveMailBHO.dll

File type:
Dynamic link library (Win64 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\activemailbho64.dll

Digital Signature
Signed by:
ActivePath Ltd.

Authority:
VeriSign, Inc.

Valid from:
8/30/2012 8:00:00 PM

Valid to:
9/18/2014 7:59:59 PM

Subject:
CN=ActivePath Ltd., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=ActivePath Ltd., L=Petah-Tiqwa, S=Israel, C=IL

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
12B97BAD1E53E30A19B66ADA7980F7EB

File PE Metadata
Compilation timestamp:
10/14/2012 3:16:59 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:gm5502u51nyUKkH9SThj9ypWZsLlUaUvwZPwkTmFq:gq02uAkHmQ9JPrTmFq

Entry address:
0x1456C

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, E3, 61, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, A7, FE, FF, FF, CC, CC, CC, 48, 8D, 05, FD, 63, 00, 00, 48, 8D, 0D, 46, 6F, 00, 00, 48, 89, 05, 67, BF, 01, 00, 48, 8D, 05, D8, 63, 00, 00, 48, 89, 0D, 51, BF, 01, 00, 48, 89, 05, 5A, BF, 01, 00, 48, 8D, 05, CB, 63, 00, 00, 48, 89, 0D, 64, BF, 01, 00, 48, 89, 05, 4D, BF, 01, 00, 48...
 
[+]

Entropy:
6.5782

Code size:
135.5 KB (138,752 bytes)

Scan activemailbho64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.