home

xtrapva.dll

Wiselogic Co., Ltd.

Publisher:
Wiselogic Co., Ltd.

Description:
Online Game Security Solution

Version:
1, 0, 0, 1

MD5:
3aaf7613bf0df896347a8c0b55d54a9a

SHA-1:
5fa802530c917368e3efd626804af8a34b5443c5

SHA-256:
11e82afd8a1ae3db43633da215af313d162ded3098d1aca7a15eff67590267df

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/15/2024 5:42:22 PM UTC  (today)

File size:
4 MB (4,215,784 bytes)

Copyright:
Wiselogic Co., Ltd.

Trademarks:
X-TRAP

File type:
Dynamic link library (Win32 DLL)

Language:
Korean (Korea)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\xtrapva.dll

File PE Metadata
Compilation timestamp:
6/26/2016 11:06:02 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:GLAwoO3hcJtLUNIPI/caq7fWlHU2q82FjFqX5aTp:ZwlxUUSwoWlHU2qzhFMaT

Entry address:
0xDC2044

Entry point:
52, C7, 04, 24, E1, BF, FC, 7F, 51, B9, 41, 55, AD, 67, 21, 4C, 24, 04, 59, 81, 04, 24, E3, 45, 6F, 2D, FF, 04, 24, 50, B8, C8, 2A, 4B, DD, 01, 44, 24, 04, 58, FF, 0C, 24, FF, 0C, 24, 81, 2C, 24, 2B, 87, F7, 37, FF, 0C, 24, 81, 34, 24, BF, FE, 6E, 3A, 50, C7, 04, 24, 79, 42, 9B, 3B, 50, B8, 4C, 8C, 73, 79, 09, 44, 24, 04, 58, 56, BE, 7C, CE, FB, 7B, 31, 74, 24, 04, 8B, 34, 24, 81, C4, 04, 00, 00, 00, 68, D3, A2, BB, 09, 89, 04, 24, 56, 89, 3C, 24, BF, 00, 00, 40, 40, 89, 7C, 24, 04, 8B, 3C, 24, 83, C4, 04...
 
[+]

Entropy:
7.9677  (probably packed)

Code size:
6.4 MB (6,754,304 bytes)

The file xtrapva.dll has been seen being distributed by the following 2 URLs.

http://xtrap.mayngames.com/tk/.../XTrapVa.dll

http://xtrap.mayngames.com/eu/.../XTrapVa.dll

Scan xtrapva.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.