home

xtrapva.dll

Wiselogic Co., Ltd.

Publisher:
Wiselogic Co., Ltd.

Description:
Online Game Security Solution

Version:
1, 0, 0, 1

MD5:
ad6e74e4fb1f66ed46c1024e7f7d1817

SHA-1:
6ab2665e6d6f13f2fc3427ad4e1b47f51feb9384

SHA-256:
cdb9f7d9a9adfaf098761289ca62ae83bcb77b55a02eb47e0b82158d7ace4bd2

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 2:28:23 AM UTC  (today)

File size:
4.2 MB (4,359,144 bytes)

Copyright:
Wiselogic Co., Ltd.

Trademarks:
X-TRAP

File type:
Dynamic link library (Win32 DLL)

Language:
Korean (Korea)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\xtrapva.dll

File PE Metadata
Compilation timestamp:
7/6/2016 2:21:28 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:Ent+II4FQM3qh//P01EXyf0NzNCMhAtKrDnMxnqpw5SYem29e7tEvfPg7FEo5G1H:6DrM/QwDAYn+rFee7tgw7Od++lpRar

Entry address:
0xE64044

Entry point:
50, C7, 04, 24, A9, A4, EF, 4E, F7, 14, 24, 81, 24, 24, 12, C8, FA, 6F, 53, BB, ED, BB, 3F, 78, 31, 5C, 24, 04, 8B, 1C, 24, 83, C4, 04, 81, 34, 24, 02, F2, F6, 37, F7, 14, 24, 81, 04, 24, 10, C6, C7, E4, F7, 1C, 24, 81, 34, 24, EE, 3B, 11, 8A, 53, 89, E3, 52, BA, 04, 00, 00, 00, 01, D3, 5A, 81, EB, 04, 00, 00, 00, 87, 1C, 24, 5C, 89, 14, 24, C7, 04, 24, 00, A9, C7, 37, 81, 34, 24, 01, A9, C7, 37, 56, C7, 04, 24, 44, 4C, E9, 30, 89, 0C, 24, 89, 1C, 24, C7, 04, 24, 80, 1C, ED, 3E, C1, 2C, 24, 06, 81, 24, 24...
 
[+]

Entropy:
7.9684  (probably packed)

Code size:
7.2 MB (7,507,968 bytes)

The file xtrapva.dll has been seen being distributed by the following 2 URLs.

http://download.gameclub.com/cf/xtrap/.../XTrapVa.dll

http://download.gameclub.com/cf/xtrap/.../XTrapVa.dll

Scan xtrapva.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.