home

adxloader.dll

Wulfsoft

Publisher:
Wulfsoft  (signed and verified)

Version:
8.0.4330.0

MD5:
b86de4f5ad12ce52573724084b7de517

SHA-1:
a6a258201cb9c40591ceb8359df3a8dc68b5fe81

SHA-256:
e835c21a1aaa28ddb8ecf8e208666ec92eab81e838d62a0c3e912b3a4f7c8e93

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 5:59:50 AM UTC  (today)

File size:
600.5 KB (614,928 bytes)

Product version:
8.0.4330.0

Original file name:
ADXAddinLoaderShim.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\684652a\localappdatafolder\shapechef\app\adxloader.dll

Digital Signature
Signed by:
Wulfsoft

Authority:
COMODO CA Limited

Valid from:
7/2/2012 7:00:00 AM

Valid to:
7/3/2017 6:59:59 AM

Subject:
CN=Wulfsoft, O=Wulfsoft, STREET=Hamburger Str. 2, L=Münster, S=North Rhine-Westphalia, PostalCode=48155, C=DE

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00A1B2A2383AD1D05B503198AE0404E735

File PE Metadata
Compilation timestamp:
10/9/2015 11:13:43 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:JrR7gkI09axhsSmjhzIwApSHoODpMz9p+BzyDZApELBziW2+jmdHe:JSwtg2jMhp8zCZ5ziW2he

Entry address:
0x51DE5

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 75, A8, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, CC, CC, CC, CC, CC, CC, CC, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 0F, 03, C1, 1B, C9, 0B, C1, 59, E9, DA, E7, FF, FF, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 07, 03, C1, 1B, C9, 0B, C1, 59, E9, C4, E7, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 10, A1, D8, AA, 09, 60, 33, C5, 89, 45, FC, 8B, 55, 18, 53, 33, DB, 56, 57, 3B, D3, 7E, 1F, 8B, 45, 14, 8B, CA, 49, 38, 18, 74, 08, 40...
 
[+]

Entropy:
6.4978

Code size:
421 KB (431,104 bytes)

Scan adxloader.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.