home

PRLOADER.DLL

Kaspersky Anti-Virus

Kaspersky Lab

Publisher:
Kaspersky Lab  (signed and verified)

Product:
Kaspersky Anti-Virus

Description:
Prague Loader

Version:
11.0.0.1245

MD5:
45f304f1cb8347420014855d57e2dcf8

SHA-1:
4c47db20d74388a835772e4e655dbca60214c29b

SHA-256:
2282b34f222c76bd6d56f121b36e3e8ace8831dc3921110f44411b0010d8d24f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 11:31:38 AM UTC  (today)

File size:
168.2 KB (172,224 bytes)

Product version:
11.0.0.1245

Copyright:
Copyright © Kaspersky Lab 1997-2009.

Trademarks:
Kaspersky™ Anti-Virus ® is registered trademark of Kaspersky Lab.

Original file name:
PRLOADER.DLL

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\prloader.dll

Digital Signature
Signed by:
Kaspersky Lab

Authority:
DigiCert Inc

Valid from:
2/22/2013 7:00:00 AM

Valid to:
4/28/2015 7:00:00 PM

Subject:
CN=Kaspersky Lab, O=Kaspersky Lab, L=Moscow, C=RU

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0226E6BDA76DAE711E3DB2321E3B5308

File PE Metadata
Compilation timestamp:
3/31/2011 1:02:55 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
3072:8mEkAXdktSi4wuU8x/XqWWyt0w1WudHHXETIPvCGA4LyvBJODAROg46y8LytPStL:8VXdktSi4wz8x/XqWX0dW2InVA4LyvBv

Entry address:
0x186B2

Entry point:
83, 7C, 24, 08, 01, 75, 05, E8, 26, 03, 00, 00, FF, 74, 24, 04, 8B, 4C, 24, 10, 8B, 54, 24, 0C, E8, CD, FE, FF, FF, 59, C2, 0C, 00, 3B, 0D, D0, 26, 8F, 6C, 75, 02, F3, C3, E9, 96, 03, 00, 00, 6A, 14, 68, 70, F9, 8E, 6C, E8, CA, 00, 00, 00, 83, 65, FC, 00, FF, 4D, 10, 78, 3A, 8B, 4D, 08, 2B, 4D, 0C, 89, 4D, 08, FF, 55, 14, EB, ED, 8B, 45, EC, 89, 45, E4, 8B, 45, E4, 8B, 00, 89, 45, E0, 8B, 45, E0, 81, 38, 63, 73, 6D, E0, 74, 0B, C7, 45, DC, 00, 00, 00, 00, 8B, 45, DC, C3, E8, 4E, 04, 00, 00, 8B, 65, E8, C7...
 
[+]

Entropy:
6.4547

Code size:
96 KB (98,304 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.