home

xtrapva.dll

Wiselogic Co., Ltd.

Publisher:
Wiselogic Co., Ltd.

Description:
Online Game Security Solution

Version:
1, 0, 0, 1

MD5:
c196176b2e775a545e369cd52f52212e

SHA-1:
c06d876a847b43041b59ec147fab3327208d1037

SHA-256:
1c884084d1565a4bdba05515a1605c84b92fd2d8d6817a554ac92d39e37bdc08

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 5:39:23 AM UTC  (today)

File size:
661 KB (676,840 bytes)

Copyright:
Wiselogic Co., Ltd.

Trademarks:
X-TRAP

File type:
Dynamic link library (Win32 DLL)

Language:
Korean (Korea)

Common path:
C:\users\{user}\downloads\catzmods_beta1_update3\catzmods_beta1_update3\release\geer\geerdowngrader.351\xtrapva.dll

File PE Metadata
Compilation timestamp:
8/25/2009 9:07:25 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:6DRSQlk4zlHoZUt2w+5rVKcO7JE6pj1JL1iWQXBpE693AzKO2H1:McQe4xoZUUhrVPO7JEujjL1HyDDSK5

Entry address:
0x18F000

Entry point:
51, B9, 06, 00, 00, 00, EB, 1F, 03, C1, D3, E0, 05, 45, 45, 53, 04, 50, E8, 00, 00, 00, 00, 81, 04, 24, 0F, 00, 00, 00, 8B, 04, 24, 83, C0, 0B, FF, E0, 49, 0B, C9, 75, DD, 59, E9, D7, 00, 00, 00, 55, 8B, EC, 81, C4, E4, F7, FF, FF, 60, C7, 85, E4, F7, FF, FF, 00, 00, 00, 00, C7, 85, F8, FB, FF, FF, 00, 00, 00, 00, 33, DB, 8B, 85, F8, FB, FF, FF, 40, 89, 85, F8, FB, FF, FF, 81, BD, F8, FB, FF, FF, 00, 04, 00, 00, 74, 18, 8B, 85, F4, FB, FF, FF, 8D, 8D, EA, F7, FF, FF, 88, 04, 19, FF, 85, F4, FB, FF, FF, 43...
 
[+]

Entropy:
7.8543  (probably packed)

Code size:
296 KB (303,104 bytes)

The file xtrapva.dll has been seen being distributed by the following URL.

http://live.patch.ge.iahgames.com/xtrap/.../XTrapVa.dll

Scan xtrapva.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.