home

VShell.exe

VShell SSH2

VanDyke Software, Inc.

It runs as a separate (within the context of its own process) windows Service named “VanDyke Software VShell SSH2/SFTP”.
Publisher:
VanDyke Software, Inc.  (signed and verified)

Product:
VShell SSH2

Version:
3.0.3.569

MD5:
79194c5c415a5caf1c51cd806d2d1ae0

SHA-1:
dfe854ef203ffee5d390236c0cfe1aa81df6cbf8

SHA-256:
851b314b247933dc2c216f050d74b82fa5b0115daa9270a9f26978a76b9d2217

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 11:06:14 PM UTC  (a few moments ago)

File size:
1.6 MB (1,701,232 bytes)

Product version:
3.0.3.569

Copyright:
Copyright (C) 2000-2007 VanDyke Software, Inc.

Original file name:
VShell.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\vshell\vshell.exe

Digital Signature
Signed by:
VanDyke Software, Inc.

Authority:
VeriSign, Inc.

Valid from:
5/8/2007 5:00:00 PM

Valid to:
5/8/2008 4:59:59 PM

Subject:
CN="VanDyke Software, Inc.", OU=Corporate, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="VanDyke Software, Inc.", L=Albuquerque, S=New Mexico, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5A78D839008431E1B3712F7586A02FB1

File PE Metadata
Compilation timestamp:
12/2/2007 3:57:11 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
8.0

CTPH (ssdeep):
24576:5W7a+md9Nu0TKmSPCS3UXUpvUBoCHtHCgQBvrscnGzs:6TP1gBo8HCpBvocnGzs

Entry address:
0x8C01F

Entry point:
E8, 00, 05, 00, 00, E9, 9E, FD, FF, FF, CC, FF, 25, 88, C4, 4B, 00, 51, 8D, 4C, 24, 04, 2B, C8, 1B, C0, F7, D0, 23, C8, 8B, C4, 25, 00, F0, FF, FF, 3B, C8, 72, 0A, 8B, C1, 59, 94, 8B, 00, 89, 04, 24, C3, 2D, 00, 10, 00, 00, 85, 00, EB, E9, FF, 74, 24, 10, FF, 74, 24, 10, FF, 74, 24, 10, FF, 74, 24, 10, 68, F2, BA, 48, 00, 68, E4, 63, 58, 00, E8, 3E, 05, 00, 00, 83, C4, 18, C3, FF, 25, 58, C3, 4B, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 57, 56, 53, 33, FF, 8B, 44, 24, 14, 0B, C0, 7D, 14, 47, 8B...
 
[+]

Entropy:
4.9039

Code size:
748 KB (765,952 bytes)

Service
Display name:
VanDyke Software VShell SSH2/SFTP

Service name:
VShell SSH2

Type:
Win32OwnProcess


Scan VShell.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.