home

AMTPShellExt64.dll

AMT Player Shell Extension

Alexander Tarelkin

Publisher:
Paul Yux & AMT STUDIO 717  (signed by Alexander Tarelkin)

Product:
AMT Player Shell Extension

Version:
4.5.5.5625

MD5:
b7d149a3feb13517c3a226ca86d4f595

SHA-1:
92c6572d3c7fa40b3ba4d37106607c56be7a8690

SHA-256:
21ba3deee3de5ab69d3cb0c8847391da42533eaa0a97ea4134217e5963f5ea2f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/28/2024 7:47:02 PM UTC  (today)

File size:
1.7 MB (1,742,984 bytes)

Product version:
4.5.5

Copyright:
Copyright © 2006-2015 Paul Yux & AMT STUDIO 717

Original file name:
AMTPShellExt64.dll

File type:
Dynamic link library (Win64 DLL)

Language:
English (United States)

Common path:
C:\Program Files\amt player\amtpshellext64.dll

Digital Signature
Signed by:
Alexander Tarelkin

Authority:
COMODO CA Limited

Valid from:
5/22/2014 5:00:00 AM

Valid to:
5/23/2015 4:59:59 AM

Subject:
CN=Alexander Tarelkin, O=Alexander Tarelkin, STREET=Uvarovsky pereulok 5-176, L=Moscow, S=Moscow, PostalCode=125222, C=RU

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00A60932CA47137DBE08F0194BA1B36060

Registration
CLSID:
{24133BE9-1320-4F15-BD83-93641E920E46}

COM registered:
Yes

File PE Metadata
Compilation timestamp:
5/15/2015 11:04:13 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
12288:8ULUNtil2OI8hssfV4IPaEJTz7/KfIFwyoSZoKppey/MMlFA95E7ZeOrcNyQuoNf:8Ufw8wgoSfcis5EbZJcFS2

Entry address:
0x15BD50

Entry point:
55, 48, 81, EC, 80, 01, 00, 00, 48, 8B, EC, 48, 89, 4D, 30, 89, 55, 3C, 4C, 89, 45, 40, 90, 48, 8D, 4D, 48, E8, 00, 16, EB, FF, 83, F8, 01, 0F, 9E, C1, 48, 0F, B6, C9, 89, 8D, 7C, 01, 00, 00, 85, C0, 75, 30, 48, 8D, 4D, 48, 48, 8D, 15, C9, 77, FF, FF, 4C, 8B, 45, 30, 44, 8B, 4D, 3C, 48, 8B, 45, 40, 48, 89, 44, 24, 20, E8, 5B, 8E, EB, FF, EB, 08, 90, 90, E8, 22, 0E, EB, FF, 90, E8, 1C, 17, EB, FF, 8B, 85, 7C, 01, 00, 00, 48, 8D, A5, 80, 01, 00, 00, 5D, C3, 48, 8D, 44, 20, 00, 48, 8D, 04, 05, 00, 00, 00, 00...
 
[+]

Entropy:
5.9819

Code size:
1.4 MB (1,420,800 bytes)

Scan AMTPShellExt64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.