home

xtrapva.dll

Wiselogic Co., Ltd.

Publisher:
Wiselogic Co., Ltd.

Description:
Online Game Security Solution

Version:
1, 0, 0, 1

MD5:
56e92231d15aea2f02c7b009d0958997

SHA-1:
53f21193c365c8c9f3a42fb90907f17006b1bf00

SHA-256:
269c9d99f91d92001de3fbbe0363f29edf1c80ff44894babf4a26b0f33574bb6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 7:45:40 AM UTC  (today)

File size:
4 MB (4,240,360 bytes)

Copyright:
Wiselogic Co., Ltd.

Trademarks:
X-TRAP

File type:
Dynamic link library (Win32 DLL)

Language:
Korean

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\xtrapva.dll

File PE Metadata
Compilation timestamp:
6/15/2016 7:04:03 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:0DBJOIm1ovwPfaJBjJm5hEdF2R+1KWijxYrU:0DfOI09PsJkhoT1KWqh

Entry address:
0xD9C044

Entry point:
51, 89, E1, 81, C1, 04, 00, 00, 00, 52, BA, 01, 68, F7, 5F, 81, C2, 03, 98, 08, A0, 81, E9, 64, 44, 6B, 7D, 29, D1, 81, C1, 64, 44, 6B, 7D, 5A, 87, 0C, 24, 5C, 89, 04, 24, C7, 04, 24, 00, 00, 00, 00, 57, 89, 14, 24, C7, 04, 24, 1E, EB, 6F, 77, 81, 04, 24, 38, 7C, 9F, 7E, 50, B8, 0C, C4, FD, 7E, 81, 44, 24, 04, 0D, 95, 75, 17, 29, 44, 24, 04, 81, 6C, 24, 04, 0D, 95, 75, 17, 58, 81, 2C, 24, 49, A3, 11, 77, 56, C7, 04, 24, AC, CC, FD, 4F, F7, 14, 24, F7, 1C, 24, 56, BE, B2, E3, 2B, 77, 09, 74, 24, 04, 5E, 51...
 
[+]

Code size:
6.3 MB (6,590,464 bytes)

The file xtrapva.dll has been seen being distributed by the following 2 URLs.

http://es.cfpatch.z8games.com/xtrap/.../XTrapVa.dll

http://cfpatch.z8game.com/xtrap/.../XTrapVa.dll

Scan xtrapva.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.