home

wcapture.dll

DTCapt

DESKPERIENCE SOFTWARE

Publisher:
Deskperience  (signed by DESKPERIENCE SOFTWARE)

Product:
DTCapt

Description:
DTCapt Dynamic Link Library

Version:
3, 0, 0, 4

MD5:
83818e1b1abb6ee44736e7a3e5f6b174

SHA-1:
e8bbc8ba4e92e61d55f526478c358c4353e3bb1b

SHA-256:
ba58301b1c90625db97282d93fba391239608d6c6c80a910c9a4bfe7762de1c1

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/16/2024 11:58:33 AM UTC  (today)

Scan engine
Detection
Engine version

Vba32 AntiVirus
suspected of Win32.BrokenEmbeddedSignature
3.12.8.12

File size:
185 KB (189,416 bytes)

Product version:
3, 0, 0, 4

Copyright:
Copyright (C) 2004-2007 by Deskperience. All rights reserved.

Original file name:
DTCapt.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\windows\syswow64\wcapture.dll

Digital Signature
Signed by:
DESKPERIENCE SOFTWARE

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
10/8/2007 4:05:41 PM

Valid to:
10/7/2009 4:05:41 PM

Subject:
CN=DESKPERIENCE SOFTWARE, OU=DESKPERIENCE, O=DESKPERIENCE SOFTWARE, L=BUCHAREST, S=BUCHAREST, C=RO

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
16C7CD101DD5B535EBA816A419352D11

File PE Metadata
Compilation timestamp:
12/21/2007 2:18:58 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
3072:szyWQDpO12FDFLwZDYuuC/kovvq64Ettb4J766jBte/EVIfNIWG6wNKm53qXwVmy:2pCc12F54HuC/ko3uINwwm53qgkiR

Entry address:
0x17F5E

Entry point:
6A, 0C, 68, 28, DB, 80, 06, E8, DE, 00, 00, 00, 33, C0, 40, 89, 45, E4, 33, FF, 89, 7D, FC, 8B, 75, 0C, 3B, F7, 75, 0C, 39, 3D, 40, 19, 81, 06, 0F, 84, AC, 00, 00, 00, 3B, F0, 74, 05, 83, FE, 02, 75, 31, A1, 48, 19, 81, 06, 3B, C7, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D0, 89, 45, E4, 39, 7D, E4, 0F, 84, 85, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, E5, FE, FF, FF, 89, 45, E4, 3B, C7, 74, 72, 8B, 5D, 10, 53, 56, FF, 75, 08, E8, B1, 84, FF, FF, 89, 45, E4, 83, FE, 01, 75, 0E, 3B, C7, 75, 0A, 53, 57, FF...
 
[+]

Entropy:
6.4679

Developed / compiled with:
Microsoft Visual C++ v7.1

Code size:
96 KB (98,304 bytes)

Scan wcapture.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.