home

Microsoft.WindowsAPICodePack.Shell.dll

Microsoft Windows API Code Pack for .NET Framework

Rhapsody International, Inc

Publisher:
Microsoft  (signed by Rhapsody International, Inc)

Product:
Microsoft Windows API Code Pack for .NET Framework

Description:
Microsoft.WindowsAPICodePack.Shell

Version:
1.1.0.0

MD5:
81aea6d31279d27ec8f86f5ae9c2c9b0

SHA-1:
2a55b7726a00030a40eb2fe9453b336d80872c4b

SHA-256:
47164ad2508f40ae40787439af3e65e08103679b69d5a86aeebfc5fdf10d7b5a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 5:36:56 PM UTC  (today)

File size:
1.1 MB (1,105,480 bytes)

Product version:
1.1.0.0

Copyright:
Copyright © Microsoft 2010

Original file name:
Microsoft.WindowsAPICodePack.Shell.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\apps\2.0\kdhl2yyp.xcy\5cn58zkj.rb6\rhap..tion_d5fe5acc6e16c835_0006.0004_421d16ab3037eb84\microsoft.windowsapicodepack.shell.dll

Digital Signature
Signed by:
Rhapsody International, Inc

Authority:
GoDaddy.com, Inc.

Valid from:
3/1/2013 6:00:54 PM

Valid to:
3/4/2015 6:08:44 PM

Subject:
CN="Rhapsody International, Inc", O="Rhapsody International, Inc", L=Seatttle, S=WA, C=US

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
4EF4A39AA618BD

File PE Metadata
Compilation timestamp:
11/18/2014 11:51:12 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:rEGhPvZaoSLfvUCAZm2nMryuBSlwE0nqkHwYvdc1kZNzbmm2JVSsu/l5Kha85/6G:vtSLfCnMTvdcuNzbmm2rSd/l5v9DNls

Entry address:
0x10EA3E

Entry point:
FF, 25, 00, 20, 00, 10, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.2336

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
1 MB (1,100,800 bytes)

Scan Microsoft.WindowsAPICodePack.Shell.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.