home

shellexex64.dll

VirusChaser

SGA Co.,LTD

It is registered as a context menu handler (displays a menu when right-clicked in Explorer) named “VC9_ShellExe64”.
Publisher:
Security Global Alliance  (signed by SGA Co.,LTD)

Product:
VirusChaser

Description:
ShellExe64

Version:
9.0.16011.1006

MD5:
0b288967931a3abbda52cf9b5fed6d19

SHA-1:
ea96494d16ba7eb6ea86ca1f5accc03993409480

SHA-256:
7065c069bbf498597668a44011d5bd8580ded3e70963f913cfd7b7f946d5f2cd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/20/2025 12:29:12 AM UTC  (today)

File size:
92.3 KB (94,464 bytes)

Product version:
9.0.16011.1006

Copyright:
TODO: (c) <Company name>. All rights reserved.

Original file name:
ShellExe64.dll

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\users\vip\viruschaser\service\shellexex64.dll

Digital Signature
Signed by:
SGA Co.,LTD

Authority:
VeriSign, Inc.

Valid from:
12/1/2015 9:00:00 AM

Valid to:
12/31/2018 8:59:59 AM

Subject:
CN="SGA Co.,LTD", OU=IT Team, O="SGA Co.,LTD", L=Seocho-gu, S=SEOUL, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
282BF1DB56B7666E30AA5CE3A0C12F51

Registration
CLSID:
{DF9BA7AF-9BE0-4A84-AE15-DE2B94194102}

COM registered:
Yes

File PE Metadata
Compilation timestamp:
1/11/2016 4:17:23 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
1536:4znDIoHJdeTkq5gVpJN9S4A3/yiO/OQerFj6:4zEKLjXQTO/OnZm

Entry address:
0x8374

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, E7, 02, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, 87, FE, FF, FF, CC, CC, CC, 48, 89, 4C, 24, 08, 48, 81, EC, 88, 00, 00, 00, 48, 8D, 0D, 09, D2, 00, 00, FF, 15, 33, 0D, 00, 00, 48, 8B, 05, F4, D2, 00, 00, 48, 89, 44, 24, 58, 45, 33, C0, 48, 8D, 54, 24, 60, 48, 8B, 4C, 24, 58, E8, 5D, 03, 00, 00, 48, 89, 44, 24, 50, 48, 83, 7C, 24...
 
[+]

Entropy:
6.2796

Code size:
32 KB (32,768 bytes)

Context Menu Handler
Display name:
VC9_ShellExe64

CLSID:
{DF9BA7AF-9BE0-4A84-AE15-DE2B94194102}

CLSID name:
VC9.0 ShellExe64


Scan shellexex64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.