home

xtrapva.dll

Wiselogic Co., Ltd.

Publisher:
Wiselogic Co., Ltd.

Description:
Online Game Security Solution

Version:
1, 0, 0, 1

MD5:
a1bb0ad4e141103dae466cc878f55634

SHA-1:
3afad32b61daf9d7b139ded8dcb8ef79ec36c8bd

SHA-256:
79b9d258e1f0397a76027326c10caa1e26ca847d1437e31b7156142459929d62

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 8:21:33 PM UTC  (today)

File size:
4.2 MB (4,428,776 bytes)

Copyright:
Wiselogic Co., Ltd.

Trademarks:
X-TRAP

File type:
Dynamic link library (Win32 DLL)

Language:
Korean

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\xtrapva.dll

File PE Metadata
Compilation timestamp:
7/21/2016 2:49:44 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:RzUSdV4CMgFzun+23neLf3Wu3w530reEXuooWcr5aCeJsN+l:hHdqCT6+Mneyu3w7EXuoJ9SS

Entry address:
0xEBB044

Entry point:
68, DF, 2E, 3E, 4F, 89, 1C, 24, C7, 04, 24, D1, C4, 5F, 57, 51, B9, D1, C4, 5F, 57, 31, 4C, 24, 04, 8B, 0C, 24, 81, C4, 04, 00, 00, 00, 68, D0, A3, A3, 3C, 89, 1C, 24, C7, 04, 24, 16, 3B, F7, 76, C1, 24, 24, 01, 51, B9, 1B, AE, C6, 74, 01, 4C, 24, 04, 59, FF, 0C, 24, FF, 04, 24, 51, B9, 46, 24, B5, 62, 29, 4C, 24, 04, 59, 51, 54, 59, 81, C1, 04, 00, 00, 00, 81, E9, 04, 00, 00, 00, 87, 0C, 24, 5C, 89, 1C, 24, C7, 04, 24, 38, 4F, FB, 47, 81, 2C, 24, 38, 4F, BB, 07, E8, 00, 00, 00, 00, 81, 2C, 24, BE, B0, 2B...
 
[+]

Code size:
7.5 MB (7,852,032 bytes)

The file xtrapva.dll has been seen being distributed by the following 3 URLs.

http://cfsapatch.z8games.com/xtrap/.../XTrapVa.dll

http://cfsapatch.z8games.com/xtrap/.../XTrapVa.dll

http://cfsapatch.z8games.com/xtrap/.../XTrapVa.dll

Scan xtrapva.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.