home

SDL2.dll

Simple DirectMedia Layer

ITVA OOO

The module SDL2.dll by ITVA OOO has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
ITVA OOO  (signed and verified)

Product:
Simple DirectMedia Layer

Description:
SDL

Version:
2, 0, 3, 0

MD5:
b8cb284aed6eed751e562b19dbb0aaef

SHA-1:
674e328408bc8933fd49ee47621318a388b08fbe

SHA-256:
f5d5ca62fe2fc77698df2c39f603aa47b5a179a10dee86e5de6e5434add06e69

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/14/2024 7:02:50 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.iTVA (M)
16.6.16.10

File size:
991.2 KB (1,014,952 bytes)

Product version:
2, 0, 3, 0

Copyright:
Copyright © 2014 Sam Lantinga

Original file name:
SDL2.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\rcr\sdl2.dll

Digital Signature
Signed by:
ITVA OOO

Authority:
COMODO CA Limited

Valid from:
4/17/2015 3:00:00 AM

Valid to:
4/17/2016 2:59:59 AM

Subject:
CN=ITVA OOO, O=ITVA OOO, STREET=18 Koryakova ul, L=Saint-Petersburg, S=RU, PostalCode=194356, C=RU

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
7F3EBBC3A0970348263AADDFFB39E887

File PE Metadata
Compilation timestamp:
3/16/2014 5:33:24 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
2.23

CTPH (ssdeep):
24576:gEbJuxlv9Sawf3oEYsTXR7fxiGmUDZ/HJkAVJcJdKll6/QTjFZLFGPQRGnx54ICR:Ylv9SlEJ8C/KjFnMMvvS4X

Entry address:
0x1430

Entry point:
83, EC, 1C, 8B, 54, 24, 24, C7, 05, E0, C5, 82, 6C, 00, 00, 00, 00, 83, FA, 01, 74, 1A, 8B, 4C, 24, 28, 8B, 44, 24, 20, E8, 1D, FE, FF, FF, 83, C4, 1C, C2, 0C, 00, 8D, B4, 26, 00, 00, 00, 00, 89, 54, 24, 0C, E8, 27, EB, 0C, 00, 8B, 54, 24, 0C, EB, D7, 90, 55, 89, E5, 5D, C3, 8D, 74, 26, 00, 8D, BC, 27, 00, 00, 00, 00, A1, 44, 8F, 81, 6C, 85, C0, 74, 43, 55, 89, E5, 83, EC, 18, C7, 04, 24, 00, 90, 81, 6C, FF, 15, 98, 25, 83, 6C, BA, 70, 14, 74, 6C, 83, EC, 04, 85, C0, 74, 16, C7, 44, 24, 04, 0E, 90, 81, 6C...
 
[+]

Code size:
850.5 KB (870,912 bytes)

Remove SDL2.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.