bcryptprimitives.dll

  • File Path: C:\Windows\system32\bcryptprimitives.dll
  • Description: Windows Cryptographic Primitives Library

Hashes

Type Hash
MD5 BE8C33CD5A83B698EEE876403CCC3929
SHA1 887957A25EC92DF7F12C9A0F73104541EEDBFF70
SHA256 239BC3DDE046E78574185C39D92DDC7C199369FE5A0FDD35A9A01E91EC7B2D9B
SHA384 D13797DE10149AD215964265B16BCA950CC8363A2CC3E5AFD9DCF30292D9E6C6E1B6C91343D017579B3364BC720232B0
SHA512 9B36F8CE648388D8146FD40F252E0002F757E4991C108F0179CECE5A32B690CC058A608A41DEC30AE88CDFB823B76E00CABDF34622F1837442F4737EDEED412C
SSDEEP 12288:EFo7eMrVh29GX8by170h0z4ANh7dnyWT2I+smbIVYZoIqvKvE1A:EFo7eMpxX/hZnyM2Ij+IKoIWUE1A
IMP 402DA460E2AC467F4489C588A9941032
PESHA1 5820DB4F619BCEFBDF84AD596A0B4092AB674E45
PE256 DA0BE8D973D8B4D41B5BA8EE0974980158F180BEBED8FF5EB771C443DAAB75B6

DLL Exports:

Function Name Ordinal Type
GetSignatureInterface 7 Exported Function
GetSecretAgreementInterface 6 Exported Function
MSCryptConvertRsaPrivateBlobToFullRsaBlob 8 Exported Function
ProcessPrngGuid 10 Exported Function
ProcessPrng 9 Exported Function
GetCipherInterface 2 Exported Function
GetAsymmetricEncryptionInterface 1 Exported Function
GetHashInterface 3 Exported Function
GetRngInterface 5 Exported Function
GetKeyDerivationInterface 4 Exported Function

Signature

  • Status: Signature verified.
  • Serial: 3300000266BD1580EFA75CD6D3000000000266
  • Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: bcryptprimitives.dll
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.19041.264 (WinBuild.160101.0800)
  • Product Version: 10.0.19041.264
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: 0/67
  • VirusTotal Link: https://www.virustotal.com/gui/file/239bc3dde046e78574185c39d92ddc7c199369fe5a0fdd35a9a01e91ec7b2d9b/detection/

File Similarity (ssdeep match)

File Score
C:\Windows\system32\BioIso.exe 40
C:\WINDOWS\system32\BioIso.exe 30
C:\Windows\system32\BioIso.exe 33
C:\Windows\system32\BioIso.exe 36
C:\Windows\system32\ci.dll 35
C:\Windows\system32\skci.dll 36

MIT License. Copyright (c) 2020-2021 Strontic.