xtrapva.dll

Wiselogic Co., Ltd.

Publisher:
Wiselogic Co., Ltd.

Description:
Online Game Security Solution

Version:
1, 0, 0, 1

MD5:
523d7714d4a936285b67811cb186b846

SHA-1:
c9ba88d31688d6b532333d775324227df2e8ba9a

SHA-256:
14487f6e9c7a7b35f4a67384135ff8bf855fb3a6029f17528572358999f055f8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 5:32:13 PM UTC  (today)

File size:
4 MB (4,228,072 bytes)

Copyright:
Wiselogic Co., Ltd.

Trademarks:
X-TRAP

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\xtrapva.dll

File PE Metadata
Compilation timestamp:
6/8/2016 2:29:16 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:6L50Pdd75o7fLs9Zl7hvQ81lm4kvUV1vqwfPms14nmGkT:6L501Z5o7Ds9n7hTm5vGIw/Em

Entry address:
0xD95044

Entry point:
68, E0, 59, 54, 11, 89, 2C, 24, 89, 3C, 24, C7, 04, 24, EB, EE, FB, 7D, 81, 24, 24, 3B, D3, EF, 75, 81, 0C, 24, A4, A0, 75, 3F, 81, 2C, 24, AC, B2, FF, 15, 50, B8, 03, 30, 00, 6A, 29, 44, 24, 04, 58, 50, C7, 04, 24, 30, 15, FF, 2F, 81, 24, 24, 52, 2C, AB, 4F, 81, 34, 24, 38, 4A, 1C, 70, F7, 14, 24, FF, 04, 24, 81, 04, 24, FE, 7E, CF, 6F, 31, 2C, 24, 33, 2C, 24, 31, 2C, 24, F7, D5, 87, 2C, 24, 81, 34, 24, 28, CF, E7, 0F, 81, EC, 04, 00, 00, 00, 89, 14, 24, 51, B9, 45, 3E, F6, 7E, 89, 4C, 24, 04, 59, 81, 24...
 
[+]

Entropy:
7.9625  (probably packed)

Code size:
6.2 MB (6,508,544 bytes)

The file xtrapva.dll has been seen being distributed by the following URL.

Scan xtrapva.dll - Powered by Reason Core Security