home

deladloader.dll

Del Ad

Marius Greuel

Publisher:
MGTEK  (signed by Marius Greuel)

Product:
Del Ad

Description:
Del Ad Loader

Version:
4.0.4258.0

MD5:
589185f33c560b5583131d11aa166488

SHA-1:
858d852d1ff7bb79049f32a48e0a8ce6adecb3e9

SHA-256:
6f4c9c37cba9b16e49f488a634e7539d14eb945f1ff49f2e978c020bccc9db3d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/27/2024 12:21:31 PM UTC  (today)

File size:
101.7 KB (104,144 bytes)

Product version:
4.0.4258.0

Copyright:
© 2010-2015 MGTEK. All rights reserved.

Original file name:
deladloader.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\mgtek\del ad\deladloader.dll

Digital Signature
Signed by:
Marius Greuel

Authority:
COMODO CA Limited

Valid from:
8/19/2015 2:00:00 AM

Valid to:
8/19/2017 1:59:59 AM

Subject:
CN=Marius Greuel, O=Marius Greuel, STREET=An der Lache 4, L=Ditzingen, S=Baden-Wuerttemberg, PostalCode=71254, C=DE

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
7A53E3DDCBE9745D74053232F6FF6BA6

File PE Metadata
Compilation timestamp:
9/9/2015 7:27:09 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

CTPH (ssdeep):
1536:xIIoiFIkQBRuLvcGeY2m2zSj0L6xtZTqEkenQJw4qWGs8jcdXg1bTTAxOtPdi5:6vQSGcbAJxtZpn4w4NjwRTTAxOtP8

Entry address:
0x6070

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, AF, 04, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, A6, FE, FF, FF, 83, C4, 0C, 5D, C2, 0C, 00, 3B, 0D, 08, 70, 01, 10, F2, 75, 02, F2, C3, F2, E9, FF, 05, 00, 00, 55, 8B, EC, 83, 25, C4, 78, 01, 10, 00, 83, EC, 2C, 53, 33, DB, 43, 09, 1D, 0C, 70, 01, 10, 6A, 0A, E8, 84, 83, 00, 00, 85, C0, 0F, 84, 74, 01, 00, 00, 83, 65, EC, 00, 33, C0, 83, 0D, 0C, 70, 01, 10, 02, 33, C9, 56, 57, 89, 1D, C4, 78, 01, 10, 8D, 7D, D4, 53, 0F, A2, 8B, F3, 5B, 89, 07, 89, 77, 04, 89...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
58 KB (59,392 bytes)

Scan deladloader.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.