How to remove A0037474.dll
- File Details
- Overview
- Analysis
A0037474.dll
The module A0037474.dll has been detected as Adware.Downloader
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
e198a90236877c1844000722086a5c75 |
| Size: |
8 MB |
| First Published: |
2017-05-25 09:04:28 (8 years ago) |
| Latest Published: |
2025-03-30 23:01:41 (3 months ago) |
| Status: |
Adware.Downloader (on last analysis) |
|
| Analysis Date: |
2025-03-30 23:01:41 (3 months ago) |
Overview
| %localappdata%\catalinagroup\citrio\user data\default\extensions\dcagnhpbnggmbihndfkkhfjojgbaaedo\1.2.40_0\binaries\win |
| %profile%\bd\local settings\application data\catalinagroup\citrio\user data\default\extensions\dcagnhpbnggmbihndfkkhfjojgbaaedo\1.2.40_0\binaries\win |
| %profile%\annan6\local settings\application data\catalinagroup\citrio\user data\default\extensions\dcagnhpbnggmbihndfkkhfjojgbaaedo\1.2.40_0\binaries\win |
| %sysdrive%\system volume information\_restore{707e28ae-030b-44df-b89d-07076ebdcb41}\rp269 |
| %localappdata%\catalinagroup\citrio\user data\default\extensions\dcagnhpbnggmbihndfkkhfjojgbaaedo\1.2.40_0\binaries |
| %sysdrive%\system volume information\_restore{c52b72cc-fd71-4681-b415-f03a3112c2d4} |
| %profile%\enatual\local settings\application data\catalinagroup\citrio\user data\default\extensions\dcagnhpbnggmbihndfkkhfjojgbaaedo\1.2.40_0\binaries |
| %profile%\dministrador\configuraciĆ³n local\datos de programa\catalinagroup\citrio\user data\default\extensions\dcagnhpbnggmbihndfkkhfjojgbaaedo\1.2.40_0\binaries |
| %localappdata%\catalinagroup\citrio\user data\default\extensions\dcagnhpbnggmbihndfkkhfjojgbaaedo\1.2.40_1\binaries |
| %profile%\ous\local settings\application data\catalinagroup\citrio\user data\default\extensions\dcagnhpbnggmbihndfkkhfjojgbaaedo\1.2.40_0\binaries |
| QtGui4.dll |
| A0037474.dll |
| A0456499.dll |
|
27.3% |
|
|
7.6% |
|
|
5.3% |
|
|
5.3% |
|
|
4.5% |
|
|
4.5% |
|
|
4.5% |
|
|
3.0% |
|
|
3.0% |
|
|
3.0% |
|
|
2.3% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
| Windows 10 |
42.5% |
|
| Windows 7 |
34.3% |
|
| Windows 8.1 |
17.9% |
|
| Windows XP |
5.2% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x65000000 |
| Entry Address: |
0x005398f2 |
| Name |
Size of data |
MD5 |
| .text |
5890560 |
9b6d5d5c135f7c874e14bcf46c8a0fac |
| .rdata |
2164736 |
cf77df5d6ccfd60081d9f7580230582a |
| .data |
38912 |
df0ee7c7cc6a73fcd09789d2600607bc |
| .rsrc |
1536 |
a242ddfc4003ef06422d11a99c105048 |
| .reloc |
490496 |
8bcbe1fa85858c1063382b11b53475ae |
