io3dengine.dll

Wemade Entertainment co.,Ltd

This is installed with LostSagaID. The file has been seen being downloaded from download2168.mediafire.com.
Publisher:
IO Entertainment Co., Ltd.  (signed by Wemade Entertainment co.,Ltd)

Description:
Lost Saga

Version:
14975

MD5:
729e08ba9dd605bf195e1714dc245e61

SHA-1:
1b75091328bb93bd0b8b5f600574e5ed3d79ad22

SHA-256:
09a0f691a909332cf3b4aa950367c307ddf59cd02c679bcd09a8e1a83c981e2c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 1:16:12 AM UTC  (today)

File size:
1.8 MB (1,892,560 bytes)

Product version:
0,0,0,1

Copyright:
IO Entertainment Co., Ltd.

File type:
Dynamic link library (Win32 DLL)

Language:
Korean (Korea)

Common path:
C:\users\{user}\downloads\io3dengine.dll

Digital Signature
Authority:
Thawte, Inc.

Valid from:
3/2/2014 7:00:00 AM

Valid to:
1/10/2016 6:59:59 AM

Subject:
CN="Wemade Entertainment co.,Ltd", OU=IT Team, O="Wemade Entertainment co.,Ltd", L=Guro-gu, S=SEOUL, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
476BF24A4B1E9F4BC2A61B152115E1FE

File PE Metadata
Compilation timestamp:
3/21/2014 2:17:47 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
49152:T/3I21R/KTY3g9xV2F7YVRE683PnaL/9ALbK:T/3I21RSTD727YjE683Pnabm3K

Entry address:
0x4EC000

Entry point:
51, B9, 06, 00, 00, 00, 85, C9, 74, 28, 01, C8, D3, E0, 05, 45, 45, 53, 04, 50, E8, 00, 00, 00, 00, 83, 04, 24, 16, 8B, 04, 24, 83, C0, 09, C7, 80, CA, FF, FF, FF, 00, 00, 00, 00, FF, E0, 49, EB, D4, 59, E9, CE, 00, 00, 00, 55, 89, E5, 81, EC, 1C, 08, 00, 00, 60, C7, 45, FA, 00, 00, 00, 00, C7, 85, E8, FB, FF, FF, 00, 00, 00, 00, 31, DB, 8B, 85, E8, FB, FF, FF, 40, 89, 85, E8, FB, FF, FF, 81, BD, E8, FB, FF, FF, 00, 04, 00, 00, 74, 18, 8B, 85, EC, FB, FF, FF, 8D, 8D, F0, FB, FF, FF, 88, 04, 0B, FF, 85, EC...
 
[+]

Entropy:
7.8671  (probably packed)

Code size:
2 MB (2,067,456 bytes)

The file io3dengine.dll has been discovered within the following programs.

LostSagaID  by IO Entertainment Co., Ltd.
lostsaga.gemscool.com
About 2% of users remove it
 
Powered by Should I Remove It?

The file io3dengine.dll has been seen being distributed by the following URL.

Scan io3dengine.dll - Powered by Reason Core Security