home

octca.dll

Microsoft Corporation

Publisher:
Microsoft Corporation  (signed and verified)

MD5:
b4f87101347223882ecac6d298de9c49

SHA-1:
8f767fa0544bcba4f280a6e2123dc429ef7b7ce9

SHA-256:
697da0f16c80a368bbafbc1ac8cc79929c510e4077bc659f925269e7704a0e01

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
11/27/2024 9:37:47 PM UTC  (today)

File size:
95.3 KB (97,552 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\office\admin\octca.dll

Digital Signature
Signed by:
Microsoft Corporation

Authority:
Microsoft Corporation

Valid from:
4/4/2006 3:43:46 PM

Valid to:
10/4/2007 3:53:46 PM

Subject:
CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Code Signing PCA, OU=Copyright (c) 2000 Microsoft Corp., O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
61469ECB000400000065

File PE Metadata
Compilation timestamp:
10/26/2006 5:00:12 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
1536:t8svMgmCWBTONX46jRHncgNh7dXX6DiAeUj/xgiB1Iz8HaeL6:C8M7bTOV4ybUiYbxgiXIzh

Entry address:
0x7B8C

Entry point:
83, 7C, 24, 08, 01, 75, 05, E8, 5E, 24, 00, 00, FF, 74, 24, 04, 8B, 4C, 24, 10, 8B, 54, 24, 0C, E8, ED, FE, FF, FF, 59, C2, 0C, 00, 55, 8B, EC, 83, EC, 20, 53, 33, DB, 39, 5D, 10, 75, 20, E8, 3C, 31, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, CD, 30, 00, 00, 83, C4, 14, 83, C8, FF, E9, A1, 00, 00, 00, 8B, 45, 0C, 3B, C3, 56, 8B, 75, 08, 74, 21, 3B, F3, 75, 1D, E8, 0D, 31, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, 9E, 30, 00, 00, 83, C4, 14, 83, C8, FF, EB, 74, 3D, FF, FF, FF, 3F...
 
[+]

Entropy:
6.3824

Code size:
75 KB (76,800 bytes)

The file octca.dll has been discovered within the following program.

µTorrent  by BitTorrent Inc.
µTorrent is a is a free, ad-supported, lighter-weight BitTorrent client designed to consume less resources then the full BitTorrent version.
www.utorrent.com
12% remove it
 
Powered by Should I Remove It?

The file octca.dll has been seen being distributed by the following 10 URLs.

ftp://201.65.174.50/Pantera/Office 2007/.../octca.dll

ftp://hoptam.bsovn.com/Office 2007 full version/Office Enterprise 2007/Office Enterprise 2007/.../octca.dll

ftp://172.24.1.22/downloads/Office 2007/.../octca.dll

ftp://10.4.15.111/Software/Microsoft Products/MS Office 2007 Enterprise Edition/.../octca.dll

https://mega.nz/temporary/.../E8ozxQQb

ftp://192.168.12.100/Microsoft.Office.2007.Enterprise.SP2.Integrated-GROUPNAMEHERE/.../octca.dll

ftp://portal.johnnyandrean.com/07-Installer/ofice2007/.../octca.dll

ftp://218.32.79.24/09掃瞄上傳/管理部/mis/office 2007/.../octca.dll

ftp://10.23.123.8/Standart App/MS Office 2007 x/.../octca.dll

ftp://p3kosi.no-ip.biz/NAS/01-APLICACIONES/PC/Adobe Reader XI/00-Office 2007 Enterprise/.../OCTCA.DLL

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.