home

libeay32.dll

The OpenSSL Toolkit

Digital Pine, LLC

libeay32.dll is the libeay32.dll binary is part of the OpenSSL Project used to implement Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols for the included program and is recompiled by Digital Pine, LLC. The library libeay32.dll, “OpenSSL shared library” by Digital Pine has been known to be a potentially unwanted program that has been detected by 2 anti-malware scanners. It is also typically executed from the user's temporary directory.
Publisher:
The OpenSSL Project, http://www.openssl.org/  (signed by Digital Pine, LLC)

Product:
The OpenSSL Toolkit

Description:
OpenSSL shared library

Version:
1.0.1e

MD5:
725af68d11fdbdc804b74329fcbca76c

SHA-1:
d9c56a18fa4896f4e005a04309ffb1680091d46b

SHA-256:
9e4b924dfaae75e66c75a370ff50f972211369264ea2e3b36c1bc0f7722da8e5

Scanner detections:
2 / 68

Status:
Inconclusive but possibly unwanted  (It is part of a common redistributable library)

Analysis date:
4/25/2024 4:21:43 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
Generic
2016.0.3005

Reason Heuristics
Common.OpenSSLPackaged.PUP.DigitalPine.TheOpenSSLProjecthttpwwwopensslorg (M)
15.8.27.8

File size:
1.5 MB (1,561,592 bytes)

Product version:
1.0.1e

Copyright:
Copyright © 1998-2006 The OpenSSL Project. Copyright © 1995-1998 Eric A. Young, Tim J. Hudson. All rights reserved.

Original file name:
libeay32.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\nuploader\libeay32.dll

Digital Signature
Signed by:
Digital Pine, LLC

Authority:
DigiCert Inc

Valid from:
6/17/2013 4:00:00 AM

Valid to:
3/30/2016 4:00:00 PM

Subject:
CN="Digital Pine, LLC", O="Digital Pine, LLC", L=Moscow, C=RU

Issuer:
CN=DigiCert Assured ID Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0C6DFC094A13DA127C9280621A006F48

File PE Metadata
Compilation timestamp:
3/28/2013 4:19:25 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
2.22

CTPH (ssdeep):
24576:67/JoKu+57PuijkPh+PNi9FvU7WTqOQr2ZacLIjmm6+wT3acj/7bqVVDoU6R:67/fLxjkPhKNgvUgBcl6+wjacj/SVpoz

Entry address:
0x1420

Entry point:
83, EC, 1C, 8B, 54, 24, 24, C7, 05, 74, AC, 15, 63, 00, 00, 00, 00, 83, FA, 01, 74, 1A, 8B, 4C, 24, 28, 8B, 44, 24, 20, E8, 1D, FE, FF, FF, 83, C4, 1C, C2, 0C, 00, 8D, B4, 26, 00, 00, 00, 00, 89, 54, 24, 0C, E8, D7, 7D, 11, 00, 8B, 54, 24, 0C, EB, D7, 90, 55, 89, E5, 83, EC, 18, A1, 78, 02, 12, 63, 85, C0, 74, 3C, C7, 04, 24, 00, 10, 12, 63, FF, 15, 80, 73, 17, 63, BA, 00, 00, 00, 00, 83, EC, 04, 85, C0, 74, 16, C7, 44, 24, 04, 0E, 10, 12, 63, 89, 04, 24, FF, 15, 84, 73, 17, 63, 83, EC, 08, 89, C2, 85, D2...
 
[+]

Code size:
1.1 MB (1,150,976 bytes)

Scan libeay32.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.