ssleay32.dll

The OpenSSL Toolkit

Acai Tech Ltd

ssleay32.dll is the OpenSSL Toolkit used to implement Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols for the included program. SSLeay is designed to provide cryptographic support functionality for SSL connections and is recompiled by Acai Tech Ltd. The library ssleay32.dll, “OpenSSL Shared Library” by Acai Tech has been known to be a potentially unwanted program that has been detected by 1 anti-malware scanner. Note, this is a common distributed file and although it has been detected it might not be a threat is un-coupled from its distribution source.
Publisher:
The OpenSSL Project, http://www.openssl.org/  (signed by Acai Tech Ltd)

Product:
The OpenSSL Toolkit

Description:
OpenSSL Shared Library

Version:
1.0.1g

MD5:
c216834e931e4d7fdeded1793befdcde

SHA-1:
1daddb46a8c6612b6e6a2b1775c086a83f1a35ad

SHA-256:
5c77b8ea189ffb4b6be4b3da29f652e606f7c62fb4140b00157edc9963e60273

Scanner detections:
1 / 68

Status:
Inconclusive but possibly unwanted  (It is part of a common redistributable library)

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/5/2024 9:50:07 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Common.OpenSSLPackaged.PUP.I
14.12.16.14

File size:
348.8 KB (357,176 bytes)

Product version:
1.0.1g

Copyright:
Copyright © 1998-2005 The OpenSSL Project. Copyright © 1995-1998 Eric A. Young, Tim J. Hudson. All rights reserved.

Original file name:
ssleay32.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\shop for rewards\ssleay32.dll

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
9/21/2014 8:00:00 PM

Valid to:
9/22/2015 7:59:59 PM

Subject:
CN=Acai Tech Ltd, O=Acai Tech Ltd, STREET=Rakefet 19, L=Hod Hasharon, S=Sharon, PostalCode=4520634, C=IL

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
189E85B982528243713729AC8244D22C

File PE Metadata
Compilation timestamp:
4/17/2014 12:19:37 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
8.0

CTPH (ssdeep):
6144:4e7yK7kkCfMZNkY0BzcutzilOsnQMnlW2E1cMziiiQ+J5XmnQY5fSlRAjw+KkPsH:4+L7kkCMZNkY0BzcutmlOsnQMnM2E1cH

Entry address:
0x32D9F

Entry point:
83, 7C, 24, 08, 01, 75, 05, E8, 43, 3F, 00, 00, FF, 74, 24, 04, 8B, 4C, 24, 10, 8B, 54, 24, 0C, E8, ED, FE, FF, FF, 59, C2, 0C, 00, 53, 56, 8B, 44, 24, 18, 0B, C0, 75, 18, 8B, 4C, 24, 14, 8B, 44, 24, 10, 33, D2, F7, F1, 8B, D8, 8B, 44, 24, 0C, F7, F1, 8B, D3, EB, 41, 8B, C8, 8B, 5C, 24, 14, 8B, 54, 24, 10, 8B, 44, 24, 0C, D1, E9, D1, DB, D1, EA, D1, D8, 0B, C9, 75, F4, F7, F3, 8B, F0, F7, 64, 24, 18, 8B, C8, 8B, 44, 24, 14, F7, E6, 03, D1, 72, 0E, 3B, 54, 24, 10, 77, 08, 72, 07, 3B, 44, 24, 0C, 76, 01, 4E...
 
[+]

Entropy:
6.3533

Code size:
248 KB (253,952 bytes)

Scan ssleay32.dll - Powered by Reason Core Security