C:\filler.4.80\3rdparty\openssl-3.0.13\engines\loader_attic.pdb
Static task
static1
1 signatures
General
-
Target
loader_attic.dll
-
Size
60KB
-
MD5
ce47138235c09e5ec6d4a3351d2361dc
-
SHA1
33aa3a469d8b4c31707ce7be275878dd616f7b6e
-
SHA256
817a32097407f60f682a0eec89919d20b88c49eb766c335e460d2ea78cf946d6
-
SHA512
d61720d96922eff43f4157af6bc4a1a3db0f66f1feadeb971b1a8678e56222d94328b7d31197e02070f6d48a181cceb9ff67bdf0ff8db3195a39cd3aeb1c5cdb
-
SSDEEP
768:4DTORdIyG7Qb5aO6glEobqEXRVEgp5mkZuFX2xlo3XXAtB1I:4DTORdzGkt9lrbfRVlvZuwxlX1
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource loader_attic.dll
Files
-
loader_attic.dll.dll windows:6 windows x86 arch:x86
4f9d494fdfaf89666ab7898998169d8b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
libcrypto-3
RSA_bits
RSA_size
RSA_set0_key
RSA_set0_factors
RSA_set0_crt_params
RSA_get0_key
RSA_get0_factors
RSA_get0_crt_params
RSA_free
DSA_new
DSA_free
DSA_get0_pqg
DSA_set0_pqg
DSA_get0_key
DSA_set0_key
PEM_def_callback
RAND_bytes_ex
ERR_new
ERR_set_debug
ERR_set_error
OPENSSL_sk_num
OPENSSL_sk_value
OPENSSL_sk_new_null
OPENSSL_sk_pop_free
OPENSSL_sk_push
OPENSSL_sk_shift
OPENSSL_strlcat
OPENSSL_strncasecmp
CRYPTO_set_mem_functions
CRYPTO_zalloc
CRYPTO_strdup
CRYPTO_secure_clear_free
OPENSSL_init_crypto
BIO_new_file
BIO_new
BIO_free
BIO_ctrl
BIO_push
BIO_pop
BIO_free_all
BIO_f_buffer
BIO_snprintf
ERR_peek_error
ERR_peek_last_error
ERR_add_error_data
ERR_load_strings
ERR_unload_strings
ERR_get_next_error_library
ERR_set_mark
ERR_pop_to_mark
ERR_clear_last_mark
d2i_PrivateKey_ex
d2i_KeyParams
EVP_PKEY_asn1_get_count
EVP_PKEY_asn1_get0
EVP_PKEY_asn1_find_str
EVP_PKEY_asn1_get0_info
BUF_MEM_new
BUF_MEM_free
d2i_PUBKEY
X509_SIG_free
d2i_X509_SIG
X509_SIG_get0
EVP_PKEY_set1_DSA
d2i_X509
X509_new_ex
d2i_X509_AUX
X509_CRL_free
d2i_X509_CRL
X509_NAME_hash_ex
PKCS8_PRIV_KEY_INFO_free
d2i_PKCS8_PRIV_KEY_INFO
EVP_PKCS82PKEY_ex
PEM_get_EVP_CIPHER_INFO
PEM_do_header
EVP_PKEY_free
PEM_read_bio_ex
PKCS12_mac_present
PKCS12_pbe_crypt
PKCS12_verify_mac
PKCS12_free
d2i_PKCS12
PKCS12_parse
OSSL_STORE_INFO_new
OSSL_STORE_INFO_new_NAME
OSSL_STORE_INFO_new_PARAMS
OSSL_STORE_INFO_new_PUBKEY
OSSL_STORE_INFO_new_PKEY
OSSL_STORE_INFO_new_CERT
OSSL_STORE_INFO_new_CRL
OSSL_STORE_INFO_get_type
OSSL_STORE_INFO_get0_data
OSSL_STORE_INFO_free
OSSL_STORE_SEARCH_get_type
OSSL_STORE_SEARCH_get0_name
OSSL_STORE_LOADER_free
OSSL_STORE_LOADER_new
OSSL_STORE_LOADER_set_open
OSSL_STORE_LOADER_set_open_ex
OSSL_STORE_LOADER_set_attach
OSSL_STORE_LOADER_set_ctrl
OSSL_STORE_LOADER_set_expect
OSSL_STORE_LOADER_set_find
OSSL_STORE_LOADER_set_load
OSSL_STORE_LOADER_set_eof
OSSL_STORE_LOADER_set_error
OSSL_STORE_LOADER_set_close
OSSL_STORE_register_loader
OSSL_STORE_unregister_loader
UI_new
UI_free
UI_add_input_string
UI_construct_prompt
UI_add_user_data
UI_process
UI_set_method
ENGINE_get_first
ENGINE_get_next
ENGINE_set_id
ENGINE_set_name
ENGINE_set_destroy_function
ENGINE_set_init_function
ENGINE_set_finish_function
ENGINE_get_pkey_asn1_meths
ENGINE_get_static_state
asn1_d2i_read_bio
OPENSSL_DIR_read
OPENSSL_DIR_end
RSA_new
EVP_PKEY_get0_RSA
EVP_PKEY_set1_RSA
EVP_PKEY_get_id
EVP_PKEY_is_a
EVP_CIPHER_CTX_free
EVP_CIPHER_CTX_new
EVP_DecryptFinal_ex
EVP_DecryptUpdate
EVP_DecryptInit_ex
EVP_EncryptFinal_ex
EVP_EncryptUpdate
EVP_EncryptInit_ex
EVP_MD_free
EVP_MD_fetch
EVP_DigestFinal_ex
EVP_DigestUpdate
EVP_DigestInit_ex
EVP_MD_CTX_free
EVP_MD_CTX_new
EVP_CIPHER_free
EVP_CIPHER_fetch
BN_mod_exp
BN_free
EVP_PKEY_new
BN_set_word
PEM_read_bio
EVP_PKEY_get0_DSA
BN_bn2lebinpad
BN_lebin2bn
BN_new
BN_num_bits
BN_CTX_free
BN_CTX_new
BN_set_flags
BIO_write
BIO_read
OPENSSL_cleanse
CRYPTO_clear_free
CRYPTO_free
X509_free
CRYPTO_malloc
kernel32
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
vcruntime140
strstr
_except_handler4_common
__current_exception_context
__current_exception
__std_type_info_destroy_list
memset
api-ms-win-crt-runtime-l1-1-0
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_errno
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
_cexit
terminate
_initialize_onexit_table
api-ms-win-crt-string-l1-1-0
tolower
strncmp
isdigit
api-ms-win-crt-filesystem-l1-1-0
_stat64i32
Exports
Exports
bind_engine
v_check
Sections
.text Size: 40KB - Virtual size: 40KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.00cfg Size: 512B - Virtual size: 270B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ