home

shellexex64.dll

VirusChaser

SGA Co.,LTD

It is registered as a context menu handler (displays a menu when right-clicked in Explorer) named “VC9_ShellExe64”.
Publisher:
Security Global Alliance  (signed by SGA Co.,LTD)

Product:
VirusChaser

Description:
ShellExe64

Version:
9.0.15355.1006

MD5:
d5278222b68b131c619970b7f4c5779d

SHA-1:
da729dfbc5be951795b6f6484ad6af147f3b3ca1

SHA-256:
ea0d69d801f392800bb4585c28bc658165fa4d7c0e7d48dd5f9e795faa14f15d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/20/2025 12:36:22 AM UTC  (today)

File size:
92.3 KB (94,464 bytes)

Product version:
9.0.15355.1006

Copyright:
TODO: (c) <Company name>. All rights reserved.

Original file name:
ShellExe64.dll

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\Program Files\virus chaser\vc90\service\shellexex64.dll

Digital Signature
Signed by:
SGA Co.,LTD

Authority:
VeriSign, Inc.

Valid from:
12/1/2015 9:00:00 AM

Valid to:
12/31/2018 8:59:59 AM

Subject:
CN="SGA Co.,LTD", OU=IT Team, O="SGA Co.,LTD", L=Seocho-gu, S=SEOUL, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
282BF1DB56B7666E30AA5CE3A0C12F51

Registration
CLSID:
{DF9BA7AF-9BE0-4A84-AE15-DE2B94194102}

COM registered:
Yes

File PE Metadata
Compilation timestamp:
12/21/2015 2:36:17 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
1536:OznDIQaRNeTUq5z/p8N9S4A33PgO/BQeE5:OzEhL0BB+O/BnE5

Entry address:
0x8374

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, E7, 02, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, 87, FE, FF, FF, CC, CC, CC, 48, 89, 4C, 24, 08, 48, 81, EC, 88, 00, 00, 00, 48, 8D, 0D, 09, D2, 00, 00, FF, 15, 33, 0D, 00, 00, 48, 8B, 05, F4, D2, 00, 00, 48, 89, 44, 24, 58, 45, 33, C0, 48, 8D, 54, 24, 60, 48, 8B, 4C, 24, 58, E8, 5D, 03, 00, 00, 48, 89, 44, 24, 50, 48, 83, 7C, 24...
 
[+]

Entropy:
6.2804

Code size:
32 KB (32,768 bytes)

Context Menu Handler
Display name:
VC9_ShellExe64

CLSID:
{DF9BA7AF-9BE0-4A84-AE15-DE2B94194102}

CLSID name:
VC9.0 ShellExe64


Scan shellexex64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.