× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5bf0d2fac42a7981735bcd8bf7a474780a670d4d523e1e8ae111d9c199ecf01b
File name: libssl
Detection ratio: 0 / 65
Analysis date: 2019-02-15 10:28:07 UTC ( 3 months, 1 week ago )
Antivirus Result Update
Acronis 20190221
Ad-Aware 20190221
AegisLab 20190221
AhnLab-V3 20190221
Alibaba 20180921
ALYac 20190221
Antiy-AVL 20190221
Arcabit 20190221
Avast 20190221
Avast-Mobile 20190221
AVG 20190221
Avira (no cloud) 20190221
Babable 20180918
Baidu 20190215
BitDefender 20190221
CAT-QuickHeal 20190221
ClamAV 20190221
CMC 20190221
Comodo 20190221
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190221
Cyren 20190221
DrWeb 20190221
eGambit 20190221
Emsisoft 20190221
Endgame 20190215
ESET-NOD32 20190221
F-Secure 20190221
Fortinet 20190220
GData 20190221
Ikarus 20190221
Sophos ML 20181128
Jiangmin 20190221
K7AntiVirus 20190221
K7GW 20190221
Kaspersky 20190221
Kingsoft 20190221
Malwarebytes 20190221
MAX 20190221
McAfee 20190221
McAfee-GW-Edition 20190221
Microsoft 20190221
eScan 20190221
NANO-Antivirus 20190221
Palo Alto Networks (Known Signatures) 20190221
Panda 20190221
Qihoo-360 20190221
Rising 20190221
SentinelOne (Static ML) 20190203
Sophos AV 20190221
SUPERAntiSpyware 20190220
Symantec 20190221
Symantec Mobile Insight 20190220
TACHYON 20190221
Tencent 20190221
TheHacker 20190217
TotalDefense 20190221
Trapmine 20190123
Trustlook 20190221
VBA32 20190221
VIPRE 20190221
ViRobot 20190221
Webroot 20190221
Yandex 20190221
ZoneAlarm by Check Point 20190221
Zoner 20190220
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Copyright
Copyright 1998-2019 The OpenSSL Authors. All rights reserved.

Product The OpenSSL Toolkit
Original name libssl
Internal name libssl
File version 1.1.1
Description OpenSSL library
Signature verification Signed file, verified signature
Signing date 7:10 PM 1/23/2019
Signers
[+] K Desktop Environment e.V.
Status Valid
Issuer DigiCert SHA2 Assured ID Code Signing CA
Valid from 11:00 PM 09/08/2017
Valid to 11:00 AM 09/11/2020
Valid usage Code Signing
Algorithm sha256RSA
Thumbprint B3C0F5F192924AEBED669F1D180279A954A066B3
Serial number 08 7C F8 78 79 FA A9 4B 9D CA BA 3C 3A 8B 0D 88
[+] DigiCert SHA2 Assured ID Code Signing CA
Status Valid
Issuer DigiCert Assured ID Root CA
Valid from 11:00 AM 10/22/2013
Valid to 11:00 AM 10/22/2028
Valid usage Code Signing
Algorithm sha256RSA
Thumbprint 92C1588E85AF2201CE7915E8538B492F605B80C6
Serial number 04 09 18 1B 5F D5 BB 66 75 53 43 B5 6F 95 50 08
[+] DigiCert
Status Valid
Issuer DigiCert Assured ID Root CA
Valid from 12:00 AM 11/10/2006
Valid to 12:00 AM 11/10/2031
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing
Algorithm sha1RSA
Thumbprint 0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43
Serial number 0C E7 E0 E5 17 D8 46 FE 8F E5 60 FC 1B F0 30 39
Counter signers
[+] DigiCert SHA2 Timestamp Responder
Status Valid
Issuer DigiCert SHA2 Assured ID Timestamping CA
Valid from 12:00 AM 01/04/2017
Valid to 12:00 AM 01/18/2028
Valid usage Timestamp Signing
Algorithm sha256RSA
Thumbrint 400191475C98891DEBA104AF47091B5EB6D4CBCB
Serial number 09 C0 FC 46 C8 04 42 13 B5 59 8B AF 28 4F 4E 41
[+] DigiCert SHA2 Assured ID Timestamping CA
Status Valid
Issuer DigiCert Assured ID Root CA
Valid from 12:00 PM 01/07/2016
Valid to 12:00 PM 01/07/2031
Valid usage Timestamp Signing
Algorithm sha256RSA
Thumbrint 3BA63A6E4841355772DEBEF9CDCF4D5AF353A297
Serial number 0A A1 25 D6 D6 32 1B 7E 41 E4 05 DA 36 97 C2 15
[+] DigiCert
Status Valid
Issuer DigiCert Assured ID Root CA
Valid from 12:00 AM 11/10/2006
Valid to 12:00 AM 11/10/2031
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing
Algorithm sha1RSA
Thumbrint 0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43
Serial number 0C E7 E0 E5 17 D8 46 FE 8F E5 60 FC 1B F0 30 39
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2019-01-07 15:13:10
Entry Point 0x00001181
Number of sections 7
PE sections
Overlays
MD5 71bcb3937a126de78dd46e1dbc20e2f5
File type data
Offset 529920
Size 7160
Entropy 7.25
PE imports
GetSystemTime
GetLastError
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
SystemTimeToFileTime
QueryPerformanceCounter
GetCurrentProcessId
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
GetStartupInfoW
IsProcessorFeaturePresent
GetCurrentThreadId
InitializeSListHead
GetModuleHandleW
SetLastError
DisableThreadLibraryCalls
strchr
memmove
memset
__std_type_info_destroy_list
_except_handler4_common
memcpy
memchr
_configure_narrow_argv
_cexit
_register_onexit_function
_errno
_seh_filter_dll
terminate
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_initterm
_initterm_e
_crt_at_quick_exit
_crt_atexit
__stdio_common_vsprintf
strncmp
_strnicmp
_stricmp
COMP_CTX_new
BN_new
CRYPTO_get_ex_data
OPENSSL_atexit
EVP_MD_CTX_md
d2i_PrivateKey
OBJ_bsearch_
OPENSSL_LH_retrieve
EVP_CipherFinal_ex
RAND_bytes
HMAC_Update
EVP_PKEY_assign
PEM_ASN1_write
CRYPTO_free_ex_data
OCSP_resp_get0
CTLOG_STORE_load_file
MD5_Init
OPENSSL_sk_free
EVP_DigestSignInit
RAND_priv_bytes
EVP_PKEY_get0_DH
EVP_PKEY_copy_parameters
OPENSSL_sk_set_cmp_func
ASYNC_WAIT_CTX_free
OPENSSL_sk_find
EVP_DigestVerifyInit
CRYPTO_mem_ctrl
OCSP_resp_count
EVP_CIPHER_CTX_block_size
BUF_MEM_free
DH_set0_key
EVP_PKEY_new_raw_private_key
BN_get_rfc3526_prime_8192
EVP_PKEY_cmp
EVP_PKEY_size
EVP_aes_128_cbc_hmac_sha1
CRYPTO_realloc
SHA256_Transform
BIO_snprintf
CRYPTO_new_ex_data
RSA_up_ref
BIO_get_retry_reason
BIO_next
EC_KEY_free
EVP_DecryptUpdate
BIO_get_data
EVP_CIPHER_CTX_ctrl
X509_STORE_CTX_get0_param
PEM_read_bio_RSAPrivateKey
BIO_set_shutdown
BIO_new
CRYPTO_get_ex_new_index
OCSP_response_get1_basic
EVP_PKEY_decrypt
BIO_free
BIO_clear_flags
X509_LOOKUP_hash_dir
X509_up_ref
CRYPTO_THREAD_lock_free
OPENSSL_sk_pop
X509_STORE_CTX_get0_chain
COMP_CTX_get_method
EVP_EncryptFinal
X509_cmp
X509_free
CRYPTO_clear_free
CT_POLICY_EVAL_CTX_free
X509_STORE_CTX_set_ex_data
OPENSSL_LH_free
OPENSSL_LH_delete
SHA1_Transform
CRYPTO_memdup
EVP_PKEY_keygen_init
CRYPTO_THREAD_lock_new
BIO_method_type
ASN1_OCTET_STRING_it
X509_NAME_hash
COMP_zlib
SRP_check_known_gN_param
X509_NAME_dup
EC_GROUP_method_of
CRYPTO_THREAD_write_lock
OPENSSL_sk_push
OPENSSL_LH_num_items
EVP_add_cipher
PEM_read_bio
CRYPTO_malloc
EVP_MD_size
SRP_Calc_A
X509_get_signature_info
X509_STORE_set_default_paths
SRP_Calc_x
d2i_X509
BIO_set_init
X509_STORE_load_locations
X509_LOOKUP_file
PEM_ASN1_read_bio
ENGINE_get_ssl_client_cert_function
BIO_up_ref
X509_VERIFY_PARAM_get0_peername
SHA224_Init
BIO_int_ctrl
EVP_CIPHER_flags
X509_check_private_key
X509_VERIFY_PARAM_set1
d2i_RSAPrivateKey_bio
BIO_s_file
X509_VERIFY_PARAM_set_hostflags
EVP_CIPHER_key_length
SHA512_Init
EVP_CipherInit_ex
ZINT64_it
OCSP_SINGLERESP_get1_ext_d2i
OPENSSL_sk_value
ZINT32_it
EVP_PKEY_CTX_free
EVP_DigestSign
X509_get_pubkey
BN_dup
EVP_aes_128_gcm
X509_VERIFY_PARAM_set_auth_level
COMP_get_type
EVP_rc4_hmac_md5
EVP_PKEY_CTX_new
EVP_PKEY_derive_init
EVP_CIPHER_CTX_iv_length
X509_VERIFY_PARAM_set_depth
ENGINE_init
i2d_OCSP_RESPID
SRP_Calc_client_key
EVP_aes_128_cbc_hmac_sha256
EVP_PKEY_decrypt_init
EVP_EncryptInit_ex
EC_KEY_get0_group
X509_LOOKUP_ctrl
BIO_test_flags
CRYPTO_memcmp
conf_ssl_get
EVP_DigestVerify
CRYPTO_zalloc
EVP_PKEY_asn1_get0_info
ERR_clear_error
OPENSSL_DIR_end
BN_free
EVP_CIPHER_block_size
EVP_sha512
EVP_camellia_128_cbc
X509_NAME_free
SHA384_Init
EVP_MD_type
EVP_rc4
HMAC_Final
ASN1_item_d2i
BIO_set_retry_reason
CRYPTO_dup_ex_data
X509_get_subject_name
BIO_printf
RSA_free
EVP_MD_CTX_copy
OPENSSL_LH_get_down_load
OBJ_NAME_add
SRP_Calc_B
BIO_callback_ctrl
EC_GROUP_get_curve_name
EVP_rc2_40_cbc
conf_ssl_name_find
EVP_PKEY_free
ZUINT32_it
PEM_read_bio_DHparams
X509_STORE_CTX_init
CRYPTO_free
EVP_MD_CTX_new
i2d_X509_EXTENSIONS
BN_ucmp
OPENSSL_LH_new
EVP_aes_192_cbc
X509_VERIFY_PARAM_set_trust
MD5_Transform
DH_check_params
X509_chain_up_ref
BN_copy
BIO_f_buffer
EVP_MD_CTX_ctrl
X509_get_ext_d2i
SHA256_Init
EVP_PKEY_security_bits
DH_new
SCT_set_source
EVP_aes_128_ccm
X509_VERIFY_PARAM_new
OPENSSL_LH_set_down_load
d2i_X509_bio
EVP_sha1
OPENSSL_sk_num
EVP_aes_256_cbc_hmac_sha256
X509_STORE_CTX_set_verify_cb
EVP_PKEY_CTX_new_id
EVP_PKEY_set1_DH
SHA512_Transform
CTLOG_STORE_load_default_file
OPENSSL_sk_sort
X509_get_issuer_name
EVP_aria_256_gcm
ASYNC_get_current_job
OPENSSL_init_crypto
EVP_CIPHER_CTX_reset
X509_VERIFY_PARAM_inherit
OCSP_RESPID_free
ERR_peek_error
BIO_get_shutdown
X509_STORE_CTX_set_flags
X509_get_extension_flags
ASYNC_WAIT_CTX_get_all_fds
OPENSSL_sk_pop_free
EVP_PKEY_up_ref
CRYPTO_secure_free
DH_get0_pqg
BIO_copy_next_retry
OPENSSL_sk_dup
EVP_PKEY_new
BIO_ADDR_free
ASYNC_WAIT_CTX_get_changed_fds
EVP_get_cipherbyname
X509_VERIFY_PARAM_free
SRP_create_verifier_BN
UINT32_it
EVP_sha384
EVP_MD_CTX_reset
OPENSSL_sk_delete
OPENSSL_LH_insert
X509_STORE_CTX_set_default
i2d_X509_NAME
EVP_seed_cbc
SHA1_Init
EVP_PKEY_get0
EVP_PKEY_keygen
X509_verify_cert_error_string
OBJ_sn2nid
ERR_add_error_data
CRYPTO_secure_zalloc
EVP_get_digestbyname
EVP_aes_256_cbc_hmac_sha1
EVP_PKEY_set_type
BIO_free_all
EVP_CipherUpdate
X509_STORE_new
COMP_CTX_free
EVP_md5_sha1
EVP_DigestSignFinal
SCT_LIST_validate
PEM_read_bio_X509
HMAC_Init_ex
EVP_PKEY_derive
EC_KEY_new_by_curve_name
DH_free
X509_get_key_usage
PE exports
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
ENGLISH US 1
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
14.14

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.1.1.0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
OpenSSL library

ImageFileCharacteristics
Executable, 32-bit, DLL

CharacterSet
Unicode

InitializedDataSize
143360

EntryPoint
0x1181

OriginalFileName
libssl

MIMEType
application/octet-stream

LegalCopyright
Copyright 1998-2019 The OpenSSL Authors. All rights reserved.

FileVersion
1.1.1

TimeStamp
2019:01:07 16:13:10+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
libssl

ProductVersion
1.1.1

SubsystemVersion
6.0

OSVersion
6.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
The OpenSSL Project, http://www.openssl.org/

CodeSize
387072

ProductName
The OpenSSL Toolkit

ProductVersionNumber
1.1.1.0

FileTypeExtension
dll

ObjectFileType
Dynamic link library

File identification
MD5 2dc3aebb208a711d6db9a3b2cd80fa54
SHA1 358ce232b6925b63f9a672062f6b4c48a506b212
SHA256 5bf0d2fac42a7981735bcd8bf7a474780a670d4d523e1e8ae111d9c199ecf01b
ssdeep
12288:3ziOUFbvuoqjtRhH5Fynwj2yhS/3VwclvOSMmWfk:DpuKhvynwfhS/lwclvOSMZfk

authentihash 7a93e760a04c794b6a48159b94d3110e1c1691b3f3234462fe9ac1eef5d15566
imphash f8151fb9816e266a7c2adf710cbcd20f
File size 524.5 KB ( 537080 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win64 Executable (generic) (61.7%)
Win32 Dynamic Link Library (generic) (14.7%)
Win32 Executable (generic) (10.0%)
OS/2 Executable (generic) (4.5%)
Generic Win/DOS Executable (4.4%)
Tags
pedll signed overlay

VirusTotal metadata
First submission 2019-01-24 10:22:56 UTC ( 4 months ago )
Last submission 2019-01-24 10:22:56 UTC ( 4 months ago )
File names libssl-1_1.dll
libssl
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!