home

totermh64.dll

Bitvise Limited

Publisher:
Bitvise Limited  (signed and verified)

MD5:
664cb3335a1446f684d104b2b8a1ef0f

SHA-1:
804b9a222029a6e834f8fc89224afa87b0c91583

SHA-256:
2b331c878d4c7b2f49e9003861b96aa818db624cc8741868d3b9049213465d79

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/26/2024 4:20:02 AM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:AdWare.Win32.Agent.zya!1075127701
23.00.65.15326

File size:
161.1 KB (164,968 bytes)

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\Program Files\bitvise ssh server - logan\totermh64.dll

Digital Signature
Signed by:
Bitvise Limited

Authority:
Thawte, Inc.

Valid from:
1/25/2013 4:00:00 PM

Valid to:
2/16/2015 3:59:59 PM

Subject:
CN=Bitvise Limited, OU=Software Development, O=Bitvise Limited, L=Gibraltar, S=Gibraltar, C=GI

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
2407C209FDC78F574D4B9BF240688813

File PE Metadata
Compilation timestamp:
2/10/2014 1:45:45 PM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
3072:P1tS3eUZEVw4T3tHK/vKoeaOGHFqfW/rvIV/cLgTWzD9iBsBALwpGIgZqxGpr9J7:jxKLu/cLDzosBAcGv59JsS3

Entry address:
0x13B70

Entry point:
40, 53, 48, 83, EC, 20, 85, D2, 48, 8B, D9, 74, 23, 83, FA, 01, 74, 0B, B8, 01, 00, 00, 00, 48, 83, C4, 20, 5B, C3, FF, 15, 55, C5, 00, 00, 48, 8B, CB, 48, 83, C4, 20, 5B, E9, 90, E5, FF, FF, 48, 83, C4, 20, 5B, E9, E6, D4, FF, FF, CC, CC, CC, CC, CC, CC, 40, 53, 48, 83, EC, 20, 33, C0, 4D, 8B, C8, 4C, 8B, C2, 48, 83, CA, FF, 48, 8B, D9, 48, 89, 01, 48, 89, 41, 08, 48, 89, 41, 10, 48, 89, 41, 18, E8, F7, 93, 00, 00, 48, 8B, C3, 48, 83, C4, 20, 5B, C3, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC...
 
[+]

Entropy:
6.0352

Code size:
123 KB (125,952 bytes)

Scan totermh64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.