home

dxva2.dll

Microsoft Windows

Microsoft Corporation

Publisher:
Microsoft Corporation  (signed and verified)

Product:
Microsoft® Windows

Description:
DirectX Video Acceleration 2.0 DLL

Version:
5.00 (vista_rtm_wcp.061020-1904)

MD5:
90162f572826735ac511b2fdcb4d8e09

SHA-1:
595dfb9ae2015fd976dc01d754286db135626eed

SHA-256:
2e04683232dd4ef6515be7a5b282f1dcd4d679f3a184c18ec25b30aa06c43c18

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
11/24/2024 12:48:26 AM UTC  (today)

File size:
67.8 KB (69,408 bytes)

Product version:
5.00

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
dxva2.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\lenovo\healthcare\dxva2.dll

Digital Signature
Signed by:
Microsoft Corporation

Authority:
Microsoft Corporation

Valid from:
4/4/2006 9:43:46 PM

Valid to:
10/4/2007 9:53:46 PM

Subject:
CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Code Signing PCA, OU=Copyright (c) 2000 Microsoft Corp., O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
61469ECB000400000065

File PE Metadata
Compilation timestamp:
10/21/2006 5:15:23 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
1536:8PL3MyRfYDEfBAAid40dFchwYLREh3AHaej:Un3AAwGDihNA

Entry address:
0xA4DC

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 74, 31, 00, 00, 5D, E9, 7F, FF, FF, FF, CC, CC, CC, CC, CC, 8B, FF, 56, 68, 04, F5, F0, 1F, 8B, F1, FF, 15, 64, 10, F0, 1F, 8B, C6, 5E, C2, 04, 00, CC, CC, CC, CC, CC, 68, 04, F5, F0, 1F, FF, 15, 68, 10, F0, 1F, 85, C0, 75, 17, A1, 00, F5, F0, 1F, 85, C0, 74, 0E, 50, FF, 15, 60, 10, F0, 1F, 83, 25, 00, F5, F0, 1F, 00, C3, CC, CC, CC, CC, CC, 8B, FF, 55, 8B, EC, 8B, 4D, 0C, 85, C9, 75, 07, B8, 03, 40, 00, 80, EB, 0D, 8B, 45, 08, 89, 01, 8B, 08, 50, FF, 51, 04...
 
[+]

Code size:
54.5 KB (55,808 bytes)

The file dxva2.dll has been seen being distributed by the following 8 URLs.

https://mega.nz/temporary/.../YF0gjYJA

http://pr6.rapidgator.net//.../index&session_id=9r7DrChsnpaE64XnsSsm61w8Yqo8ijjS

http://download1901.mediafire.com/z612dy014kqg/.../dxva2.dll

http://download1239.mediafire.com/8im7vy18btug/.../dxva2.dll

http://poradnik.kz1.pl/.../dxva2.dll

http://download1239.mediafire.com/a76m73b2zawg/.../dxva2.dll

http://www.search-dll.com/.../283.html

http://download1145.mediafire.com/aq8b0evpzaag/.../dxva2.dll

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.