home

xtrapva.dll

Wiselogic Co., Ltd.

Publisher:
Wiselogic Co., Ltd.

Description:
Online Game Security Solution

Version:
1, 0, 0, 1

MD5:
4ddb829fb3461ef477c1fd48479d79b1

SHA-1:
c9c84d7c0bc43d1c8d4b58f6ccfa7fcaf482e0f1

SHA-256:
9ee8fabb300165d39645ce615f9ba690ab50b17ac294010b3b81b86dca561b3f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/6/2024 2:11:26 AM UTC  (today)

File size:
4.2 MB (4,408,296 bytes)

Copyright:
Wiselogic Co., Ltd.

Trademarks:
X-TRAP

File type:
Dynamic link library (Win32 DLL)

Language:
Korean

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\xtrapva.dll

File PE Metadata
Compilation timestamp:
7/8/2016 12:21:16 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:ePAsQXIe3q4ScQ/avs0nTIQeUmB8+6Jon5ftTRFvxGOYEP:ePNQYeJnQ4s0rmB8+J5fvFpxYs

Entry address:
0xE8D044

Entry point:
53, C7, 04, 24, 29, C5, ED, 7F, F7, 14, 24, FF, 04, 24, 81, 0C, 24, 92, 1F, 2E, 74, 81, 24, 24, AD, 2B, 9B, 7B, 81, 34, 24, 70, B1, ED, 28, F7, 14, 24, FF, 04, 24, 81, 24, 24, 18, 72, BD, 7C, 83, 04, 24, FF, 55, BD, 07, 60, 08, 24, 29, 6C, 24, 04, 5D, 52, C7, 04, 24, E8, D9, C3, 42, 89, 2C, 24, C7, 04, 24, E2, 2E, 6F, 7E, 87, 1C, 24, F7, D3, 87, 1C, 24, 81, 24, 24, 55, D6, 2B, 37, C1, 24, 24, 08, 81, 04, 24, A9, 89, DC, 36, 81, 2C, 24, A8, 9E, AC, 37, 57, 89, E7, 81, C7, 04, 00, 00, 00, 81, EF, 04, 00, 00...
 
[+]

Entropy:
7.9687  (probably packed)

Code size:
7.2 MB (7,573,504 bytes)

The file xtrapva.dll has been seen being distributed by the following URL.

http://audl.axeso5.com/xtrap/.../XTrapVa.dll

Scan xtrapva.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.