home

pscontextmenu.dll

One-Clickers Corporation

Publisher:
One-Clickers Corporation  (signed and verified)

MD5:
23694d1175377591e048dff38288a18b

SHA-1:
cf92408352d150095c2c0879e9b02a7c4bb18b6c

SHA-256:
949d13f179a511ac3d504a635451fa2c0cfc63e829be913a1fc43f74619561f6

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/25/2024 11:47:19 AM UTC  (today)

Scan engine
Detection
Engine version

SUPERAntiSpyware
Trojan.Agent/Gen-Bancos
10154

File size:
429.7 KB (440,056 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\windows\syswow64\pscontextmenu.dll

Digital Signature
Signed by:
One-Clickers Corporation

Authority:
The USERTRUST Network

Valid from:
10/29/2010 2:00:00 AM

Valid to:
10/29/2012 12:59:59 AM

Subject:
CN=One-Clickers Corporation, O=One-Clickers Corporation, STREET=31 Maple Drive, L=Orillia, S=ON, PostalCode=L3V 3W3, C=CA

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
533DE9252ED14EB26CD6B03C4D434A4A

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:/RtZgoASPtwSHQ/IKysAu+RQEoaFT16sE/LQDj70cBhueh7WjRcssht3R+O3kAW/:lgrS9HQ/Csa1GmMcBh0fsf3R33lpUnV

Entry address:
0x5B2F4

Entry point:
55, 8B, EC, 83, C4, C4, B8, E4, B0, 45, 00, E8, C0, B3, FA, FF, E8, 77, 91, FA, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.5788

Developed / compiled with:
Microsoft Visual C++

Code size:
361 KB (369,664 bytes)

Scan pscontextmenu.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.