xvpndll.exe

Java corporate

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘55DD8DD5’.
Publisher:
Java corporate  (signed and verified)

Version:
1.0.0.0

MD5:
2ec8618c8741e55eda20069a92884bbb

SHA-1:
487bc3b655a7e6c1ffefb26e0ac1b13ed1f9643f

SHA-256:
e8cd253dfa2763e1962bc01a27e4927fbe39c0963ca20af327560456c5c0db3e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 12:28:48 AM UTC  (today)

File size:
4 MB (4,234,984 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\xvpndll.exe

Digital Signature
Signed by:

Authority:
Java corporate

Valid from:
3/14/2017 10:16:27 AM

Valid to:
3/14/2018 10:16:27 AM

Subject:
CN=Java corporate, O=Java corporate, C=BR

Issuer:
CN=Java corporate, O=Java corporate, C=BR

Serial number:
01

File PE Metadata
Compilation timestamp:
3/14/2017 8:18:48 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x928AD5

Entry point:
68, C4, 95, 9F, 47, E8, E1, FA, D6, FF, 2B, F8, 0F, B3, C6, B8, AB, 3F, 93, 50, 8A, CA, 66, 0F, 42, F6, D3, C0, 8D, B4, 15, FC, FE, FF, FF, 85, FF, 02, C2, 66, 85, D4, 32, 04, 37, E9, BD, 01, D7, FF, 00, 00, 00, 52, 65, 61, 64, 46, 69, 6C, 65, 00, 00, 00, 00, 41, 6C, 70, 68, 61, 42, 6C, 65, 6E, 64, 00, 00, 00, 00, 53, 74, 72, 65, 74, 63, 68, 42, 6C, 74, 00, 00, 00, 00, 44, 65, 6C, 65, 74, 65, 4D, 65, 6E, 75, 00, 0F, 82, FB, 24, 16, 00, 80, 7E, 5C, 00, E9, 1A, 3A, 15, 00, 68, C5, BF, 71, CB, E8, 6A, FA, D6...
 
[+]

Code size:
4.8 MB (5,073,920 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
55DD8DD5

Command:
C:\users\{user}\appdata\local\xvpndll.exe


Scan xvpndll.exe - Powered by Reason Core Security