home

ca2.dll

MD5:
c44909629e9e02e4a289905b7977e26e

SHA-1:
8a844654d3563f049604f67c901847e713232eb3

SHA-256:
9d15e82e23a1a12afbd88609265a237a0c12325d3b1d37328aa6160ddac19c1c

Scanner detections:
3 / 68

Status:
Clean  (3 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/16/2024 12:26:16 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
Win32/Blacked
2015.0.4477

Emsisoft Anti-Malware
Gen:Variant.Kazy.763549
10.0.0.5366

Norman
Gen:Variant.Kazy.763549
03.02.2016 07:38:05

File size:
144.5 KB (147,968 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\ca2.dll

File PE Metadata
Compilation timestamp:
11/3/2015 1:05:00 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
3072:3asAZ0QhieQNpYkDRI2W8B0FnbJDFHVD1bKP8LIBDJvbwZdXz:LQTIvMbjHhLIBDd8/Xz

Entry address:
0x1F661

Entry point:
E9, 4A, CA, 01, 00, 9C, C7, 04, 24, AB, 11, 0A, 40, E8, A3, 7C, 00, 00, 2D, 6D, 74, 81, 05, 54, 18, 73, AD, 6A, 91, CB, 89, 4C, AB, AC, 57, 76, 1F, 78, 07, C5, 2D, B7, F3, 13, C7, CA, AD, 2D, 5D, 3D, 29, E0, 18, 5F, 94, 43, 1D, DE, D7, 41, 03, 87, D3, 8A, B2, 73, 4A, 54, 7D, 3F, A0, DD, CF, 55, F9, D1, C3, D1, 12, 56, 3D, 77, D1, 77, 57, C6, 3F, CA, 84, 5C, 30, 18, 45, 26, E2, 1E, 4B, 48, 02, 25, 03, 5B, E3, CF, 48, 25, DB, D8, 3C, BF, 13, D9, B5, DA, E9, 4A, E3, E3, 63, C9, 27, DF, 7C, C2, 58, F5, 0A, 0A...
 
[+]

Packer / compiler:
Xtreme-Protector v1.05

Code size:
38 KB (38,912 bytes)

The file ca2.dll has been seen being distributed by the following URL.

http://engenhariatm.com/loader/.../ca2.dll?n74

Scan ca2.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.