e1d6dd07cc71d157cb68078ec547d0d5af971cbb87187d6bac0332db744fa093

Sharing

Copy URL Twitter E-mail

General

Target

e1d6dd07cc71d157cb68078ec547d0d5af971cbb87187d6bac0332db744fa093
Size

596KB
MD5

2bd41d2ef0df005ab681da51ef2510a3
SHA1

9b1a49221d6746965698686aa4267db0c3d1e083
SHA256

e1d6dd07cc71d157cb68078ec547d0d5af971cbb87187d6bac0332db744fa093
SHA512

4ce7bfaa2b85a335601d5d1b2865a6ec1ed84f485ba8813e6cb1d0af8f6b8ebb19a2222ab4319557c38005529e76823b0cc28f6c0c9e64f90d86446a9ec27552
SSDEEP

12288:OXYczppGHVVKjDfLc1kGmm3f56uWQ3AgQis3jWFRgf6c:OXYc1pGjoIoI6NKPm6Hc

Score

3^/10

Malware Config

Signatures

Unsigned PE 9 IoCs

Checks for missing Authenticode signature.

resource
e1d6dd07cc71d157cb68078ec547d0d5af971cbb87187d6bac0332db744fa093
unpack001/$PLUGINSDIR/InstallOptions.dll
unpack001/$PLUGINSDIR/StartMenu.dll
unpack001/$PLUGINSDIR/System.dll
unpack001/$PLUGINSDIR/UserInfo.dll
unpack001/Uninstall.exe
unpack002/$PLUGINSDIR/UserInfo.dll
unpack001/bin/gmssl.dll
unpack001/bin/gmssl.exe

Files

e1d6dd07cc71d157cb68078ec547d0d5af971cbb87187d6bac0332db744fa093
.exe windows:4 windows x86 arch:x86

f4639a0b3116c2cfc71144b88a929cfd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumValueW
RegEnumKeyW
RegQueryValueExW
RegSetValueExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegOpenKeyExW
RegCreateKeyExW

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
SHGetFileInfoW
SHFileOperationW
ShellExecuteExW

ole32

CoCreateInstance
OleUninitialize
OleInitialize
IIDFromString
CoTaskMemFree

comctl32

ImageList_Destroy
ord17
ImageList_AddMasked
ImageList_Create

user32

MessageBoxIndirectW
GetDlgItemTextW
SetDlgItemTextW
CreatePopupMenu
AppendMenuW
TrackPopupMenu
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
IsWindowVisible
CallWindowProcW
GetMessagePos
CheckDlgButton
LoadCursorW
SetCursor
GetSysColor
SetWindowPos
GetWindowLongW
IsWindowEnabled
SetClassLongW
GetSystemMenu
EnableMenuItem
GetWindowRect
ScreenToClient
EndDialog
RegisterClassW
SystemParametersInfoW
CharPrevW
GetClassInfoW
DialogBoxParamW
CharNextW
ExitWindowsEx
DestroyWindow
CreateDialogParamW
SetTimer
SetWindowTextW
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfW
SendMessageTimeoutW
FindWindowExW
IsWindow
GetDlgItem
SetWindowLongW
LoadImageW
GetDC
ReleaseDC
EnableWindow
InvalidateRect
SendMessageW
DefWindowProcW
BeginPaint
GetClientRect
FillRect
DrawTextW
EndPaint
CharNextA
wsprintfA
DispatchMessageW
CreateWindowExW
PeekMessageW
GetSystemMetrics

gdi32

GetDeviceCaps
SetBkColor
SelectObject
DeleteObject
CreateBrushIndirect
CreateFontIndirectW
SetBkMode
SetTextColor

kernel32

lstrcmpiA
CreateFileW
GetTempFileNameW
RemoveDirectoryW
CreateProcessW
CreateDirectoryW
GetLastError
CreateThread
GlobalLock
GlobalUnlock
GetDiskFreeSpaceW
WideCharToMultiByte
lstrcpynW
lstrlenW
SetErrorMode
GetVersionExW
GetCommandLineW
GetTempPathW
GetWindowsDirectoryW
WriteFile
CopyFileW
ExitProcess
GetCurrentProcess
GetModuleFileNameW
GetFileSize
GetTickCount
Sleep
SetFileAttributesW
GetFileAttributesW
SetCurrentDirectoryW
MoveFileW
GetFullPathNameW
GetShortPathNameW
SearchPathW
CompareFileTime
SetFileTime
CloseHandle
lstrcmpiW
lstrcmpW
ExpandEnvironmentStringsW
GlobalFree
GlobalAlloc
GetModuleHandleW
LoadLibraryExW
FreeLibrary
WritePrivateProfileStringW
GetPrivateProfileStringW
lstrlenA
MultiByteToWideChar
ReadFile
SetFilePointer
FindClose
FindNextFileW
FindFirstFileW
DeleteFileW
MulDiv
lstrcpyA
MoveFileExW
lstrcatW
GetSystemDirectoryW
GetProcAddress
GetModuleHandleA
GetExitCodeProcess
WaitForSingleObject
SetEnvironmentVariableW

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

85f08eb0cbec010ecbc287fa68321173

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryW
GetCurrentDirectoryW
GlobalUnlock
GlobalLock
GetModuleHandleW
CloseHandle
SetEndOfFile
GetPrivateProfileIntW
SetFilePointer
MultiByteToWideChar
ReadFile
GetFileSize
CreateFileW
lstrcmpiW
GetPrivateProfileStringW
lstrcatW
lstrcpynW
WritePrivateProfileStringW
lstrlenW
lstrcpyW
GlobalFree
WriteFile
GlobalAlloc

user32

PtInRect
LoadCursorW
GetDlgCtrlID
CloseClipboard
GetClipboardData
OpenClipboard
GetClientRect
SetWindowRgn
LoadIconW
LoadImageW
SetWindowLongW
CreateWindowExW
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamW
ShowWindow
EnableMenuItem
GetSystemMenu
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageW
TranslateMessage
GetMessageW
IsDialogMessageW
SetCursor
DrawTextW
GetWindowLongW
DrawFocusRect
CallWindowProcW
PostMessageW
MessageBoxW
GetSysColor
CharNextW
wsprintfW
GetWindowTextW
SetWindowTextW
SendMessageW
MapWindowPoints

gdi32

SetTextColor
CreateCompatibleDC
GetObjectW
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
SelectObject

shell32

SHBrowseForFolderW
SHGetDesktopFolder
SHGetPathFromIDListW
ShellExecuteW

comdlg32

GetOpenFileNameW
GetSaveFileNameW
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

dialog
initDialog
make_unicode
show

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/NSIS.InstallOptions.ini
$PLUGINSDIR/StartMenu.dll
.dll windows:4 windows x86 arch:x86

646971a3aef724d6f553f40ae84fe26b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleW
lstrcatW
FindClose
FindNextFileW
lstrcmpW
MulDiv
GlobalFree
lstrcpynW
GlobalAlloc
lstrcmpiW
FindFirstFileW
lstrcpyW

user32

TranslateMessage
GetMessageW
IsDialogMessageW
DispatchMessageW
CallWindowProcW
GetWindowLongW
CheckDlgButton
ShowWindow
LoadIconW
GetClientRect
MoveWindow
ScreenToClient
GetWindowRect
ReleaseDC
GetDC
EnableWindow
SetWindowTextW
SendMessageW
IsDlgButtonChecked
GetWindowTextW
DestroyWindow
GetDlgItem
CreateDialogParamW
SetWindowLongW
wsprintfW
PostMessageW

gdi32

GetTextMetricsW
SelectObject

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListW

ole32

CoTaskMemFree

Exports

Exports

Init
Select
Show

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 578B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

509a34b3a68a773e0afb4259e68f9f82

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
lstrcpynW
lstrcpyW
GetProcAddress
WideCharToMultiByte
VirtualFree
FreeLibrary
lstrlenW
LoadLibraryW
GetModuleHandleW
MultiByteToWideChar
VirtualAlloc
VirtualProtect
GetLastError

user32

wsprintfW

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store
StrAlloc

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 867B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 662B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/UserInfo.dll
.dll windows:4 windows x86 arch:x86

68e847ed6763e00454edac87b3abd95a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

FreeSid
EqualSid
AllocateAndInitializeSid
GetTokenInformation
OpenProcessToken
OpenThreadToken
GetUserNameW

kernel32

GlobalAlloc
CloseHandle
GlobalFree
GetLastError
GetCurrentProcess
GetCurrentThread
GetVersion
GetProcAddress
GetModuleHandleA
lstrcpynW

Exports

Exports

GetAccountType
GetName
GetOriginalAccountType

Sections

.text
Size: 1024B - Virtual size: 714B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 705B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
Uninstall.exe
.exe windows:4 windows x86 arch:x86

f4639a0b3116c2cfc71144b88a929cfd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumValueW
RegEnumKeyW
RegQueryValueExW
RegSetValueExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegOpenKeyExW
RegCreateKeyExW

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
SHGetFileInfoW
SHFileOperationW
ShellExecuteExW

ole32

CoCreateInstance
OleUninitialize
OleInitialize
IIDFromString
CoTaskMemFree

comctl32

ImageList_Destroy
ord17
ImageList_AddMasked
ImageList_Create

user32

MessageBoxIndirectW
GetDlgItemTextW
SetDlgItemTextW
CreatePopupMenu
AppendMenuW
TrackPopupMenu
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
IsWindowVisible
CallWindowProcW
GetMessagePos
CheckDlgButton
LoadCursorW
SetCursor
GetSysColor
SetWindowPos
GetWindowLongW
IsWindowEnabled
SetClassLongW
GetSystemMenu
EnableMenuItem
GetWindowRect
ScreenToClient
EndDialog
RegisterClassW
SystemParametersInfoW
CharPrevW
GetClassInfoW
DialogBoxParamW
CharNextW
ExitWindowsEx
DestroyWindow
CreateDialogParamW
SetTimer
SetWindowTextW
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfW
SendMessageTimeoutW
FindWindowExW
IsWindow
GetDlgItem
SetWindowLongW
LoadImageW
GetDC
ReleaseDC
EnableWindow
InvalidateRect
SendMessageW
DefWindowProcW
BeginPaint
GetClientRect
FillRect
DrawTextW
EndPaint
CharNextA
wsprintfA
DispatchMessageW
CreateWindowExW
PeekMessageW
GetSystemMetrics

gdi32

GetDeviceCaps
SetBkColor
SelectObject
DeleteObject
CreateBrushIndirect
CreateFontIndirectW
SetBkMode
SetTextColor

kernel32

lstrcmpiA
CreateFileW
GetTempFileNameW
RemoveDirectoryW
CreateProcessW
CreateDirectoryW
GetLastError
CreateThread
GlobalLock
GlobalUnlock
GetDiskFreeSpaceW
WideCharToMultiByte
lstrcpynW
lstrlenW
SetErrorMode
GetVersionExW
GetCommandLineW
GetTempPathW
GetWindowsDirectoryW
WriteFile
CopyFileW
ExitProcess
GetCurrentProcess
GetModuleFileNameW
GetFileSize
GetTickCount
Sleep
SetFileAttributesW
GetFileAttributesW
SetCurrentDirectoryW
MoveFileW
GetFullPathNameW
GetShortPathNameW
SearchPathW
CompareFileTime
SetFileTime
CloseHandle
lstrcmpiW
lstrcmpW
ExpandEnvironmentStringsW
GlobalFree
GlobalAlloc
GetModuleHandleW
LoadLibraryExW
FreeLibrary
WritePrivateProfileStringW
GetPrivateProfileStringW
lstrlenA
MultiByteToWideChar
ReadFile
SetFilePointer
FindClose
FindNextFileW
FindFirstFileW
DeleteFileW
MulDiv
lstrcpyA
MoveFileExW
lstrcatW
GetSystemDirectoryW
GetProcAddress
GetModuleHandleA
GetExitCodeProcess
WaitForSingleObject
SetEnvironmentVariableW

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/UserInfo.dll
.dll windows:4 windows x86 arch:x86

68e847ed6763e00454edac87b3abd95a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

FreeSid
EqualSid
AllocateAndInitializeSid
GetTokenInformation
OpenProcessToken
OpenThreadToken
GetUserNameW

kernel32

GlobalAlloc
CloseHandle
GlobalFree
GetLastError
GetCurrentProcess
GetCurrentThread
GetVersion
GetProcAddress
GetModuleHandleA
lstrcpynW

Exports

Exports

GetAccountType
GetName
GetOriginalAccountType

Sections

.text
Size: 1024B - Virtual size: 714B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 705B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
bin/gmssl.dll
.dll windows:6 windows x64 arch:x64

1645e456e9415c906b7370f361437ab5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Guan Zhi\code\github\GmSSL\build\bin\gmssl.pdb

Imports

kernel32

GetStartupInfoW
LoadLibraryA
GetProcAddress
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
FreeLibrary
VirtualQuery
GetProcessHeap
HeapFree
HeapAlloc
GetLastError
WideCharToMultiByte
MultiByteToWideChar
RaiseException
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW

advapi32

CryptGenRandom
CryptReleaseContext
CryptAcquireContextA

ws2_32

closesocket
send
recv
WSAGetLastError
WSACleanup
WSAStartup
socket
listen
connect
bind
gethostbyname
htons
accept

vcruntime140d

__current_exception_context
__vcrt_LoadLibraryExW
__vcrt_GetModuleHandleW
__vcrt_GetModuleFileNameW
__C_specific_handler
__std_type_info_destroy_list
__C_specific_handler_noexcept
strstr
strchr
memset
memcpy
memcmp
__current_exception

ucrtbased

strcpy_s
strcat_s
__stdio_common_vsprintf_s
_initterm
_initterm_e
_wmakepath_s
_wsplitpath_s
_CrtDbgReport
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
_cexit
terminate
atoi
__stdio_common_vsscanf
_fstat64i32
fread
_fileno
strncpy
fopen
fclose
_time64
_ctime64
strnlen
_CrtDbgReportW
fwrite
fgets
feof
toupper
malloc
free
strlen
_wassert
strcmp
__stdio_common_vsprintf
__stdio_common_vfprintf
__acrt_iob_func
wcscpy_s
perror

Exports

Exports

BLOCK_CIPHER_aes128
BLOCK_CIPHER_sm4
DIGEST_sha224
DIGEST_sha256
DIGEST_sha384
DIGEST_sha512
DIGEST_sha512_224
DIGEST_sha512_256
DIGEST_sm3
OPENSSL_hexchar2int
OPENSSL_hexstr2buf
SDF_CalculateMAC
SDF_CloseDevice
SDF_CloseSession
SDF_CreateFile
SDF_Decrypt
SDF_DeleteFile
SDF_DestroyKey
SDF_Encrypt
SDF_ExchangeDigitEnvelopeBaseOnECC
SDF_ExchangeDigitEnvelopeBaseOnRSA
SDF_ExportEncPublicKey_ECC
SDF_ExportEncPublicKey_RSA
SDF_ExportSignPublicKey_ECC
SDF_ExportSignPublicKey_RSA
SDF_ExternalEncrypt_ECC
SDF_ExternalPublicKeyOperation_RSA
SDF_ExternalVerify_ECC
SDF_FreeECCCipher
SDF_GenerateAgreementDataAndKeyWithECC
SDF_GenerateAgreementDataWithECC
SDF_GenerateKeyPair_ECC
SDF_GenerateKeyPair_RSA
SDF_GenerateKeyWithECC
SDF_GenerateKeyWithEPK_ECC
SDF_GenerateKeyWithEPK_RSA
SDF_GenerateKeyWithIPK_ECC
SDF_GenerateKeyWithIPK_RSA
SDF_GenerateKeyWithKEK
SDF_GenerateRandom
SDF_GetDeviceInfo
SDF_GetErrorReason
SDF_GetPrivateKeyAccessRight
SDF_HashFinal
SDF_HashInit
SDF_HashUpdate
SDF_ImportKey
SDF_ImportKeyWithISK_ECC
SDF_ImportKeyWithISK_RSA
SDF_ImportKeyWithKEK
SDF_InternalDecrypt_ECC
SDF_InternalEncrypt_ECC
SDF_InternalPrivateKeyOperation_RSA
SDF_InternalPublicKeyOperation_RSA
SDF_InternalSign_ECC
SDF_InternalVerify_ECC
SDF_LoadLibrary
SDF_METHOD_free
SDF_METHOD_load_library
SDF_NewECCCipher
SDF_OpenDevice
SDF_OpenSession
SDF_PrintDeviceInfo
SDF_PrintECCCipher
SDF_PrintECCPrivateKey
SDF_PrintECCPublicKey
SDF_PrintECCSignature
SDF_PrintRSAPrivateKey
SDF_PrintRSAPublicKey
SDF_ReadFile
SDF_ReleasePrivateKeyAccessRight
SDF_UnloadLibrary
SDF_WriteFile
SKF_CancelWaitForDevEvent
SKF_ChangeDevAuthKey
SKF_ChangePIN
SKF_ClearSecureState
SKF_CloseApplication
SKF_CloseContainer
SKF_CloseDevice
SKF_CloseHandle
SKF_ConnectDev
SKF_CreateApplication
SKF_CreateContainer
SKF_CreateFile
SKF_Decrypt
SKF_DecryptFinal
SKF_DecryptInit
SKF_DecryptUpdate
SKF_DeleteApplication
SKF_DeleteContainer
SKF_DeleteFile
SKF_DevAuth
SKF_Digest
SKF_DigestFinal
SKF_DigestInit
SKF_DigestUpdate
SKF_DisConnectDev
SKF_ECCDecrypt
SKF_ECCExportSessionKey
SKF_ECCSignData
SKF_ECCVerify
SKF_Encrypt
SKF_EncryptFinal
SKF_EncryptInit
SKF_EncryptUpdate
SKF_EnumApplication
SKF_EnumContainer
SKF_EnumDev
SKF_EnumFiles
SKF_ExportCertificate
SKF_ExportPublicKey
SKF_ExtECCDecrypt
SKF_ExtECCEncrypt
SKF_ExtECCSign
SKF_ExtECCVerify
SKF_ExtRSAPriKeyOperation
SKF_ExtRSAPubKeyOperation
SKF_GenECCKeyPair
SKF_GenExtRSAKey
SKF_GenRSAKeyPair
SKF_GenRandom
SKF_GenerateAgreementDataAndKeyWithECC
SKF_GenerateAgreementDataWithECC
SKF_GenerateKeyWithECC
SKF_GetAlgorName
SKF_GetContainerType
SKF_GetContainerTypeName
SKF_GetDevInfo
SKF_GetDevState
SKF_GetDevStateName
SKF_GetErrorString
SKF_GetFileInfo
SKF_GetPINInfo
SKF_ImportCertificate
SKF_ImportECCKeyPair
SKF_ImportRSAKeyPair
SKF_ImportSessionKey
SKF_LoadLibrary
SKF_LockDev
SKF_METHOD_free
SKF_METHOD_load_library
SKF_Mac
SKF_MacFinal
SKF_MacInit
SKF_MacUpdate
SKF_NewECCCipher
SKF_NewEnvelopedKey
SKF_OpenApplication
SKF_OpenContainer
SKF_OpenDevice
SKF_PrintDevInfo
SKF_PrintECCCipher
SKF_PrintECCPrivateKey
SKF_PrintECCPublicKey
SKF_PrintECCSignature
SKF_PrintErrorString
SKF_PrintRSAPrivateKey
SKF_PrintRSAPublicKey
SKF_RSAExportSessionKey
SKF_RSASignData
SKF_RSAVerify
SKF_ReadFile
SKF_SetLabel
SKF_SetSymmKey
SKF_Transmit
SKF_UnblockPIN
SKF_UnloadLibrary
SKF_UnlockDev
SKF_VerifyPIN
SKF_WaitForDevEvent
SKF_WriteFile
SM2_G
SM9_P1
SM9_P2
SM9_Ppubs
__local_stdio_printf_options
__local_stdio_scanf_options
_vfprintf_l
_vsnprintf_l
_vsprintf_l
_vsscanf_l
aes_cbc_decrypt
aes_cbc_encrypt
aes_cbc_padding_decrypt
aes_cbc_padding_encrypt
aes_ctr_encrypt
aes_decrypt
aes_encrypt
aes_gcm_decrypt
aes_gcm_encrypt
aes_set_decrypt_key
aes_set_encrypt_key
asn1_any_from_der
asn1_any_to_der
asn1_any_type_from_der
asn1_bit_octets_from_der_ex
asn1_bit_octets_to_der_ex
asn1_bit_string_from_der_ex
asn1_bit_string_to_der_ex
asn1_bits_from_der_ex
asn1_bits_print
asn1_bits_to_der_ex
asn1_boolean_from_der_ex
asn1_boolean_from_name
asn1_boolean_name
asn1_boolean_to_der_ex
asn1_check
asn1_data_from_der
asn1_data_to_der
asn1_generalized_time_from_der_ex
asn1_generalized_time_to_der_ex
asn1_header_to_der
asn1_ia5_string_from_der_ex
asn1_ia5_string_to_der_ex
asn1_int_from_der_ex
asn1_int_to_der_ex
asn1_integer_from_der_ex
asn1_integer_to_der_ex
asn1_length_from_der
asn1_length_is_zero
asn1_length_le
asn1_length_to_der
asn1_nonempty_type_from_der
asn1_nonempty_type_to_der
asn1_null_from_der
asn1_null_name
asn1_null_to_der
asn1_object_identifier_equ
asn1_object_identifier_from_der_ex
asn1_object_identifier_from_octets
asn1_object_identifier_print
asn1_object_identifier_to_der_ex
asn1_object_identifier_to_octets
asn1_oid_info_from_der
asn1_oid_info_from_der_ex
asn1_oid_info_from_name
asn1_oid_info_from_oid
asn1_printable_string_case_ignore_match
asn1_printable_string_from_der_ex
asn1_printable_string_to_der_ex
asn1_sequence_of_int_from_der
asn1_sequence_of_int_print
asn1_sequence_of_int_to_der
asn1_string_is_ia5_string
asn1_string_is_printable_string
asn1_string_is_utf8_string
asn1_string_print
asn1_tag_from_der
asn1_tag_from_der_readonly
asn1_tag_is_cstring
asn1_tag_name
asn1_tag_to_der
asn1_time_from_str
asn1_time_to_str
asn1_type_from_der
asn1_type_to_der
asn1_types_get_count
asn1_types_get_item_by_index
asn1_utc_time_from_der_ex
asn1_utc_time_to_der_ex
asn1_utf8_string_from_der_ex
asn1_utf8_string_to_der_ex
base64_ctx_num
base64_decode_block
base64_decode_finish
base64_decode_init
base64_decode_update
base64_encode_block
base64_encode_finish
base64_encode_init
base64_encode_update
block_cipher_decrypt
block_cipher_encrypt
block_cipher_set_decrypt_key
block_cipher_set_encrypt_key
chacha20_generate_keystream
chacha20_init
cms_content_info_from_der
cms_content_info_header_to_der
cms_content_info_print
cms_content_info_to_der
cms_content_type_from_der
cms_content_type_from_name
cms_content_type_name
cms_content_type_to_der
cms_decrypt
cms_deenvelop
cms_deenvelop_and_verify
cms_digest_algors_from_der
cms_digest_algors_print
cms_digest_algors_to_der
cms_enced_content_info_decrypt_from_der
cms_enced_content_info_encrypt_to_der
cms_enced_content_info_from_der
cms_enced_content_info_print
cms_enced_content_info_to_der
cms_encrypt
cms_encrypted_data_decrypt_from_der
cms_encrypted_data_encrypt_to_der
cms_encrypted_data_from_der
cms_encrypted_data_print
cms_encrypted_data_to_der
cms_envelop
cms_enveloped_data_decrypt_from_der
cms_enveloped_data_encrypt_to_der
cms_enveloped_data_from_der
cms_enveloped_data_print
cms_enveloped_data_to_der
cms_from_pem
cms_issuer_and_serial_number_from_der
cms_issuer_and_serial_number_print
cms_issuer_and_serial_number_to_der
cms_key_agreement_info_from_der
cms_key_agreement_info_print
cms_key_agreement_info_to_der
cms_print
cms_recipient_info_decrypt_from_der
cms_recipient_info_encrypt_to_der
cms_recipient_info_from_der
cms_recipient_info_print
cms_recipient_info_to_der
cms_recipient_infos_add_recipient_info
cms_recipient_infos_print
cms_set_data
cms_set_key_agreement_info
cms_sign
cms_sign_and_envelop
cms_signed_and_enveloped_data_decipher_from_der
cms_signed_and_enveloped_data_encipher_to_der
cms_signed_and_enveloped_data_from_der
cms_signed_and_enveloped_data_print
cms_signed_and_enveloped_data_to_der
cms_signed_data_from_der
cms_signed_data_print
cms_signed_data_sign_to_der
cms_signed_data_to_der
cms_signed_data_verify_from_der
cms_signer_info_from_der
cms_signer_info_print
cms_signer_info_sign_to_der
cms_signer_info_to_der
cms_signer_info_verify_from_der
cms_signer_infos_add_signer_info
cms_signer_infos_print
cms_to_pem
cms_verify
digest
digest_finish
digest_from_name
digest_init
digest_name
digest_table
digest_update
ec_named_curve_from_der
ec_named_curve_from_name
ec_named_curve_name
ec_named_curve_to_der
ec_point_print
ec_private_key_print
file_read_all
file_size
format_bytes
format_print
format_string
fprintf
gcm_decrypt
gcm_encrypt
gf128_add
gf128_equ_hex
gf128_from_bytes
gf128_from_hex
gf128_mul
gf128_mul2
gf128_print
gf128_print_bits
gf128_to_bytes
gf128_zero
ghash
ghash_finish
ghash_init
ghash_update
gmssl_memxor
gmssl_secure_clear
gmssl_secure_memcmp
gmssl_version_num
gmssl_version_str
hash_drbg_generate
hash_drbg_init
hash_drbg_reseed
hex2bin
hex_to_bytes
hkdf_expand
hkdf_extract
hmac
hmac_finish
hmac_finish_and_verify
hmac_init
hmac_update
http_get
http_parse_response
http_parse_uri
mem_is_zero
memxor
pbes2_algor_from_der
pbes2_algor_print
pbes2_algor_to_der
pbes2_enc_algor_from_der
pbes2_enc_algor_print
pbes2_enc_algor_to_der
pbes2_params_from_der
pbes2_params_print
pbes2_params_to_der
pbkdf2_algor_from_der
pbkdf2_algor_print
pbkdf2_algor_to_der
pbkdf2_genkey
pbkdf2_hmac_sm3_genkey
pbkdf2_params_from_der
pbkdf2_params_print
pbkdf2_params_to_der
pbkdf2_prf_from_der
pbkdf2_prf_from_name
pbkdf2_prf_name
pbkdf2_prf_to_der
pem_read
pem_write
pkcs8_enced_private_key_info_from_der
pkcs8_enced_private_key_info_print
pkcs8_enced_private_key_info_to_der
print_bytes
print_der
print_nodes
printbyte
printf
rand_bytes
rsa_public_key_print
sdf_close_device
sdf_load_library
sdf_load_sign_key
sdf_method
sdf_open_device
sdf_print_device_info
sdf_rand_bytes
sdf_release_key
sdf_sansec
sdf_sign
sdf_unload_library
sdf_vendor
sha224_digest
sha224_finish
sha224_init
sha224_update
sha256_digest
sha256_finish
sha256_init
sha256_update
sha384_compress
sha384_digest
sha384_finish
sha384_init
sha384_update
sha512_compress
sha512_digest
sha512_finish
sha512_init
sha512_update
skf_change_app_admin_pin
skf_change_app_user_pin
skf_change_authkey
skf_close_device
skf_create_app
skf_create_container
skf_delete_app
skf_delete_container
skf_delete_object
skf_export_object
skf_export_sign_cert
skf_import_object
skf_import_sign_cert
skf_list_apps
skf_list_containers
skf_list_devices
skf_list_objects
skf_load_library
skf_load_sign_key
skf_method
skf_open_device
skf_print_device_info
skf_rand_bytes
skf_release_key
skf_set_label
skf_sign
skf_unblock_user_pin
skf_unload_library
skf_vendor
skf_wisec
sm2_bn_add
sm2_bn_check
sm2_bn_cmp

Sections

.text
Size: 973KB - Virtual size: 972KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 336KB - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 303KB - Virtual size: 304KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bin/gmssl.exe
.exe windows:6 windows x64 arch:x64

bcdff0bdc7fc40fab6018c6822ef030c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Guan Zhi\code\github\GmSSL\build\bin\gmssl.pdb

Imports

gmssl

sm2_verify_init
sm2_verify_update
sm2_verify_finish
x509_cert_from_pem
x509_cert_get_subject_public_key
sm2_encrypt
sm2_decrypt
sm9_oid_from_name
sm9_sign_master_key_generate
sm9_sign_master_key_info_encrypt_to_pem
sm9_sign_master_public_key_to_pem
sm9_enc_master_key_generate
sm9_enc_master_key_info_encrypt_to_pem
sm9_enc_master_public_key_to_pem
sm9_sign_master_key_extract_key
sm9_sign_master_key_info_decrypt_from_pem
sm9_sign_key_info_encrypt_to_pem
sm9_enc_master_key_extract_key
sm9_enc_master_key_info_decrypt_from_pem
sm9_enc_key_info_encrypt_to_pem
sm9_sign_key_info_decrypt_from_pem
sm9_sign_init
sm9_sign_update
sm9_sign_finish
sm9_sign_master_public_key_from_pem
sm9_verify_init
sm9_verify_update
sm9_verify_finish
sm9_enc_master_public_key_from_pem
sm9_encrypt
sm9_enc_key_info_decrypt_from_pem
sm9_decrypt
zuc_encrypt_init
zuc_encrypt_update
zuc_encrypt_finish
rand_bytes
pbkdf2_hmac_sm3_genkey
x509_validity_add_days
x509_name_set
x509_cert_sign_to_der
x509_cert_to_pem
x509_exts_add_default_authority_key_identifier
x509_exts_add_subject_key_identifier_ex
x509_exts_add_key_usage
x509_exts_add_subject_alt_name
x509_exts_add_issuer_alt_name
x509_exts_add_basic_constraints
x509_exts_add_ext_key_usage
x509_exts_add_crl_distribution_points
x509_exts_add_inhibit_any_policy
x509_exts_add_authority_info_access
x509_general_names_add_general_name
x509_key_usage_from_name
x509_key_purpose_from_name
x509_cert_print
x509_name_print
x509_name_equ
x509_cert_from_pem_by_subject
x509_cert_verify_by_ca_cert
x509_cert_get_issuer_and_serial_number
x509_cert_get_subject
x509_cert_check_crl
format_print
format_bytes
asn1_time_from_str
x509_cert_new_from_file
x509_crl_reason_from_name
x509_cert_revoke_to_der
sm4_gcm_encrypt_finish
sm2_sign_finish
x509_req_from_pem
x509_req_print
sm2_public_key_equ
x509_req_verify
x509_req_get_details
x509_revoked_cert_from_der
x509_crl_exts_add_default_authority_key_identifier
x509_crl_exts_add_crl_number
x509_crl_exts_add_delta_crl_indicator
x509_crl_exts_add_freshest_crl
x509_crl_exts_add_authority_info_acess
x509_crl_sign_to_der
file_read_all
x509_crl_new_from_cert
file_size
asn1_length_is_zero
x509_crl_from_der
x509_crl_print
x509_crl_check
x509_crl_verify_by_ca_cert
cms_sign
cms_to_pem
asn1_type_from_der
cms_verify
cms_from_pem
cms_envelop
cms_content_type_name
cms_deenvelop
cms_print
sdf_load_library
sdf_open_device
sdf_print_device_info
sdf_rand_bytes
sdf_load_sign_key
sdf_sign
sdf_release_key
sdf_close_device
sdf_unload_library
skf_load_library
skf_unload_library
skf_print_device_info
skf_open_device
skf_close_device
skf_rand_bytes
skf_load_sign_key
skf_sign
skf_release_key
tls_socket_lib_init
tls_socket_create
tls_socket_connect
tls_ctx_init
tls_ctx_set_cipher_suites
tls_ctx_set_ca_certificates
tls_ctx_set_certificate_and_key
tls_ctx_cleanup
tls_init
tls_set_socket
tls_do_handshake
tls_send
tls_recv
tls_shutdown
tls_cleanup
tls_socket_bind
tls_socket_listen
tls_socket_accept
tls_ctx_set_tlcp_server_certificate_and_keys
tls13_send
tls13_recv
sm4_gcm_encrypt_update
sm2_sign_update
sm2_sign_init
sm2_private_key_info_decrypt_from_pem
sm2_private_key_info_encrypt_to_pem
sm2_public_key_info_to_pem
sm3_hmac_finish
sm2_key_generate
sm3_hmac_update
sm3_hmac_init
sm2_compute_z
sm2_public_key_info_from_pem
sm3_finish
sm3_update
sm3_init
sm4_gcm_decrypt_finish
sm4_gcm_decrypt_update
x509_req_to_pem
sm4_gcm_decrypt_init
sm4_gcm_encrypt_init
sm4_ctr_sm3_hmac_decrypt_finish
sm4_ctr_sm3_hmac_decrypt_update
sm4_ctr_sm3_hmac_decrypt_init
sm4_ctr_sm3_hmac_encrypt_finish
sm4_ctr_sm3_hmac_encrypt_update
sm4_ctr_sm3_hmac_encrypt_init
sm4_cbc_sm3_hmac_decrypt_finish
sm4_cbc_sm3_hmac_decrypt_update
sm4_cbc_sm3_hmac_decrypt_init
sm4_cbc_sm3_hmac_encrypt_finish
sm4_cbc_sm3_hmac_encrypt_update
sm4_cbc_sm3_hmac_encrypt_init
hex_to_bytes
sm4_ctr_encrypt_finish
sm4_ctr_encrypt_update
sm4_ctr_encrypt_init
sm4_cbc_decrypt_finish
sm4_cbc_decrypt_update
sm4_cbc_decrypt_init
sm4_cbc_encrypt_finish
sm4_cbc_encrypt_update
sm4_cbc_encrypt_init
gmssl_secure_clear
x509_req_sign_to_der
gmssl_version_str

ws2_32

gethostbyname
select
htons
closesocket
__WSAFDIsSet
WSAGetLastError

vcruntime140d

__current_exception_context
__current_exception
__std_type_info_destroy_list
__vcrt_LoadLibraryExW
__vcrt_GetModuleHandleW
__vcrt_GetModuleFileNameW
__C_specific_handler
__C_specific_handler_noexcept
memset
memcpy

ucrtbased

__setusermatherr
_configure_narrow_argv
_initialize_narrow_environment
_get_initial_narrow_environment
_initterm
_initterm_e
exit
_exit
_set_fmode
__p___argc
__p___argv
_cexit
_c_exit
_set_app_type
_configthreadlocale
_set_new_mode
__p__commode
_wmakepath_s
_wsplitpath_s
wcscpy_s
_seh_filter_dll
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
terminate
_register_thread_local_exe_atexit_callback
__stdio_common_vsprintf_s
strcat_s
strcpy_s
_CrtDbgReportW
_CrtDbgReport
puts
fgets
fflush
feof
_time64
strncpy
strcpy
atoi
malloc
free
strlen
strerror
_errno
fwrite
fread
fopen
fclose
strcmp
__stdio_common_vfprintf
__acrt_iob_func
_seh_filter_exe

kernel32

IsDebuggerPresent
RaiseException
MultiByteToWideChar
WideCharToMultiByte
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
GetProcAddress
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
GetStartupInfoW
GetModuleHandleW

Sections

.text
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
include/gmssl/aead.h
include/gmssl/aes.h
include/gmssl/api.h
include/gmssl/asn1.h
include/gmssl/base64.h
include/gmssl/block_cipher.h
include/gmssl/chacha20.h
include/gmssl/cms.h
include/gmssl/des.h
include/gmssl/digest.h
include/gmssl/dylib.h
include/gmssl/ec.h
include/gmssl/endian.h
include/gmssl/error.h
include/gmssl/file.h
include/gmssl/gcm.h
include/gmssl/gf128.h
include/gmssl/hash_drbg.h
include/gmssl/hex.h
include/gmssl/hkdf.h
include/gmssl/hmac.h
include/gmssl/http.h
include/gmssl/md5.h
include/gmssl/mem.h
include/gmssl/oid.h
include/gmssl/pbkdf2.h
include/gmssl/pem.h
include/gmssl/pkcs8.h
include/gmssl/rand.h
include/gmssl/rc4.h
include/gmssl/rdrand.h
include/gmssl/rsa.h
include/gmssl/sdf.h
include/gmssl/sha1.h
include/gmssl/sha2.h
include/gmssl/sha3.h
include/gmssl/skf.h
include/gmssl/sm2.h
include/gmssl/sm2_blind.h
include/gmssl/sm2_commit.h
include/gmssl/sm2_elgamal.h
include/gmssl/sm2_key_share.h
include/gmssl/sm2_recover.h
include/gmssl/sm2_ring.h
include/gmssl/sm3.h
include/gmssl/sm3_rng.h
include/gmssl/sm3_x8_avx2.h
include/gmssl/sm4.h
include/gmssl/sm4_cbc_mac.h
include/gmssl/sm4_cl.h
include/gmssl/sm4_rng.h
include/gmssl/sm9.h
include/gmssl/socket.h
include/gmssl/tls.h
include/gmssl/version.h
include/gmssl/x509.h
include/gmssl/x509_alg.h
include/gmssl/x509_cer.h
include/gmssl/x509_crl.h
include/gmssl/x509_ext.h
include/gmssl/x509_req.h
include/gmssl/zuc.h
lib/gmssl.lib

Sharing

General

Malware Config

Signatures

Files

f4639a0b3116c2cfc71144b88a929cfd

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

shell32

ole32

comctl32

user32

gdi32

kernel32

Sections

.text Size: 25KB - Virtual size: 25KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 1KB - Virtual size: 126KB

.ndata Size: - Virtual size: 96KB

.rsrc Size: 32KB - Virtual size: 31KB

85f08eb0cbec010ecbc287fa68321173

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 19KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1KB - Virtual size: 1KB

646971a3aef724d6f553f40ae84fe26b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

Exports

Exports

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 10KB

.rsrc Size: 512B - Virtual size: 296B

.reloc Size: 1024B - Virtual size: 578B

509a34b3a68a773e0afb4259e68f9f82

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 1024B - Virtual size: 867B

.data Size: 512B - Virtual size: 120B

.reloc Size: 1024B - Virtual size: 662B

68e847ed6763e00454edac87b3abd95a

Headers

DLL Characteristics

File Characteristics

Imports

.text
Size: 25KB - Virtual size: 25KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 126KB

.ndata
Size: - Virtual size: 96KB

.rsrc
Size: 32KB - Virtual size: 31KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 19KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 10KB

.rsrc
Size: 512B - Virtual size: 296B

.reloc
Size: 1024B - Virtual size: 578B

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 1024B - Virtual size: 867B

.data
Size: 512B - Virtual size: 120B

.reloc
Size: 1024B - Virtual size: 662B

.text
Size: 1024B - Virtual size: 714B

.rdata
Size: 1024B - Virtual size: 705B

.data
Size: 512B - Virtual size: 104B

.reloc
Size: 512B - Virtual size: 240B

.text
Size: 25KB - Virtual size: 25KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 126KB

.ndata
Size: - Virtual size: 96KB

.rsrc
Size: 32KB - Virtual size: 31KB

.text
Size: 1024B - Virtual size: 714B

.rdata
Size: 1024B - Virtual size: 705B

.data
Size: 512B - Virtual size: 104B

.reloc
Size: 512B - Virtual size: 240B

.text
Size: 973KB - Virtual size: 972KB

.rdata
Size: 336KB - Virtual size: 336KB

.data
Size: 303KB - Virtual size: 304KB

.pdata
Size: 22KB - Virtual size: 22KB

.idata
Size: 5KB - Virtual size: 4KB

.00cfg
Size: 512B - Virtual size: 373B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 13KB - Virtual size: 12KB