C:\dev\vcpkg\buildtrees\wolfssl\x64-windows-rel\wolfssl.pdb
Static task
static1
1 signatures
General
-
Target
wolfssl.dll
-
Size
1.2MB
-
MD5
a396ee8375252d04da31676fe1b3ff75
-
SHA1
57aee1e5b69a85d0e0b7d5a103ddb683f0204cce
-
SHA256
7dc3aeda7518abb376a6932583669e7e1595a656edeae65af1397807322e8a25
-
SHA512
ff755bed789869a8cc2adc05b7a3b234ef93997b1774cc719d506ce4dd03fcd0ed6d320a13d815e27a21ebdf99f3308ea47a8de6b9a25ca4eaa8fb4045fbb0db
-
SSDEEP
24576:yoCqsxtqSepCBr5fFrHodqht+tmiw9P9TsdJRV5Wodh8NHmoz:3CzASep0r5fFrHoUht+tU9TsrRV5WodE
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource wolfssl.dll
Files
-
wolfssl.dll.dll windows:6 windows x64 arch:x64
Password: password
0fc90ed65bdfb6bd41f1d230f0355fe5
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
Imports
ws2_32
gethostbyname
socket
send
recv
listen
htons
connect
closesocket
bind
WSAGetLastError
accept
crypt32
CertEnumCertificatesInStore
CertCloseStore
CertOpenSystemStoreA
kernel32
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
GetCurrentProcessId
SetUnhandledExceptionFilter
FindClose
UnhandledExceptionFilter
FindNextFileA
CloseHandle
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
SetEvent
WaitForSingleObject
CreateEventA
QueryPerformanceCounter
QueryPerformanceFrequency
FormatMessageA
DisableThreadLibraryCalls
RtlVirtualUnwind
RtlLookupFunctionEntry
FindFirstFileA
InitializeSListHead
IsDebuggerPresent
RtlCaptureContext
advapi32
CryptReleaseContext
CryptAcquireContextA
CryptGenRandom
vcruntime140
strstr
__C_specific_handler
__std_type_info_destroy_list
memmove
memcmp
memset
memcpy
api-ms-win-crt-stdio-l1-1-0
fclose
fopen
fwrite
__stdio_common_vfprintf
fflush
fread
fseek
fgets
__stdio_common_vsprintf
ftell
api-ms-win-crt-string-l1-1-0
strncmp
strncat
_stricmp
strtok_s
strncpy
strcmp
strcpy_s
tolower
isspace
_strnicmp
toupper
api-ms-win-crt-runtime-l1-1-0
_beginthread
_errno
_beginthreadex
_cexit
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table
api-ms-win-crt-filesystem-l1-1-0
_stat64i32
api-ms-win-crt-heap-l1-1-0
free
malloc
realloc
api-ms-win-crt-math-l1-1-0
pow
log
api-ms-win-crt-time-l1-1-0
_time64
_mktime64
_gmtime64
api-ms-win-crt-convert-l1-1-0
strtol
atoi
api-ms-win-crt-environment-l1-1-0
getenv
Exports
Exports
AddSessionToCache
AddSignature
AltNameNew
Base16_Decode
Base16_Encode
Base64_Decode
Base64_Encode
Base64_EncodeEsc
Base64_Encode_NoNl
BioReceive
BioSend
BuildTls13Message
CheckRunTimeFastMath
CheckRunTimeSettings
ERR_load_SSL_strings
EccEnumToNID
EmbedOcspLookup
EmbedOcspRespFree
EmbedReceive
EmbedSend
FreeAltNames
FreeDecodedCert
FreeNameSubtrees
GetASNInt
InitDecodedCert
InitSuitesHashSigAlgo_ex2
ParseCert
SSL_COMP_get_compression_methods
SSL_CTX_set_tmp_dh_callback
SSL_ResourceFree
SetAlgoID
SetName
ToTraditional
ToTraditional_ex
TraditionalEnc
UnTraditionalEnc
WOLFSSL_CIPHER_mode
WOLFSSL_ERROR
WOLFSSL_ERROR_MSG
WOLFSSL_EVP_CIPHER_mode
cpuid_clear_flag
cpuid_select_flags
cpuid_set_flag
mp_cond_copy
mp_rand
wc_AesCbcDecrypt
wc_AesCbcDecryptWithKey
wc_AesCbcEncrypt
wc_AesCbcEncryptWithKey
wc_AesCfb1Decrypt
wc_AesCfb1Encrypt
wc_AesCfb8Decrypt
wc_AesCfb8Encrypt
wc_AesCfbDecrypt
wc_AesCfbEncrypt
wc_AesDecryptDirect
wc_AesEncryptDirect
wc_AesFree
wc_AesGcmDecrypt
wc_AesGcmEncrypt
wc_AesGcmEncrypt_ex
wc_AesGcmSetExtIV
wc_AesGcmSetIV
wc_AesGcmSetKey
wc_AesGetKeySize
wc_AesInit
wc_AesInit_Id
wc_AesInit_Label
wc_AesKeyUnWrap
wc_AesKeyUnWrap_ex
wc_AesKeyWrap
wc_AesKeyWrap_ex
wc_AesSetIV
wc_AesSetKey
wc_AesSetKeyDirect
wc_AllocDer
wc_BufferKeyDecrypt
wc_BufferKeyEncrypt
wc_CertFree
wc_CertNew
wc_CertPemToDer
wc_ChaCha20Poly1305_CheckTag
wc_ChaCha20Poly1305_Decrypt
wc_ChaCha20Poly1305_Encrypt
wc_ChaCha20Poly1305_Final
wc_ChaCha20Poly1305_Init
wc_ChaCha20Poly1305_UpdateAad
wc_ChaCha20Poly1305_UpdateData
wc_Chacha_Process
wc_Chacha_SetIV
wc_Chacha_SetKey
wc_CheckCertSigPubKey
wc_CheckProbablePrime
wc_CheckProbablePrime_ex
wc_CreateEncryptedPKCS8Key
wc_CreatePKCS8Key
wc_CryptoCb_DefaultDevID
wc_CryptoCb_RegisterDevice
wc_CryptoCb_UnRegisterDevice
wc_DecryptPKCS8Key
wc_DerToPem
wc_DerToPemEx
wc_Des3Free
wc_Des3Init
wc_Des3_CbcDecrypt
wc_Des3_CbcDecryptWithKey
wc_Des3_CbcEncrypt
wc_Des3_CbcEncryptWithKey
wc_Des3_EcbEncrypt
wc_Des3_SetIV
wc_Des3_SetKey
wc_Des_CbcDecrypt
wc_Des_CbcDecryptWithKey
wc_Des_CbcEncrypt
wc_Des_CbcEncryptWithKey
wc_Des_EcbEncrypt
wc_Des_SetIV
wc_Des_SetKey
wc_DhAgree
wc_DhCheckKeyPair
wc_DhCheckPrivKey
wc_DhCheckPrivKey_ex
wc_DhCheckPubKey
wc_DhCheckPubKey_ex
wc_DhCheckPubValue
wc_DhCmpNamedKey
wc_DhCopyNamedKey
wc_DhExportParamsRaw
wc_DhGenerateKeyPair
wc_DhGenerateParams
wc_DhGetNamedKeyMinSize
wc_DhGetNamedKeyParamSize
wc_DhKeyDecode
wc_DhParamsLoad
wc_DhSetCheckKey
wc_DhSetKey
wc_DhSetKey_ex
wc_DhSetNamedKey
wc_Dh_ffdhe2048_Get
wc_ERR_print_errors_cb
wc_ERR_print_errors_fp
wc_ERR_remove_state
wc_EccKeyDerSize
wc_EccKeyToDer
wc_EccKeyToPKCS8
wc_EccPrivateKeyDecode
wc_EccPrivateKeyToDer
wc_EccPrivateKeyToPKCS8
wc_EccPublicKeyDecode
wc_EccPublicKeyDerSize
wc_EccPublicKeyToDer
wc_EccPublicKeyToDer_ex
wc_EncodeObjectId
wc_EncodeSignature
wc_EncryptPKCS8Key
wc_EncryptedInfoGet
wc_ErrorString
wc_FileExists
wc_FreeDecodedCert
wc_FreeDer
wc_FreeDhKey
wc_FreeMutex
wc_FreeRng
wc_FreeRsaKey
wc_FreeRwLock
wc_GenerateSeed
wc_GetCTC_HashOID
wc_GetDateAsCalendarTime
wc_GetDateInfo
wc_GetErrorString
wc_GetMutexCb
wc_GetPkcs8TraditionalOffset
wc_GetPubKeyDerFromCert
wc_GetSubjectRaw
wc_GetTime
wc_Gmac
wc_GmacSetKey
wc_GmacUpdate
wc_GmacVerify
wc_HKDF
wc_HKDF_Expand
wc_HKDF_Expand_ex
wc_HKDF_Extract
wc_HKDF_Extract_ex
wc_Hash
wc_HashFinal
wc_HashFree
wc_HashGetBlockSize
wc_HashGetDigestSize
wc_HashGetFlags
wc_HashGetOID
wc_HashInit
wc_HashInit_ex
wc_HashSetFlags
wc_HashTypeConvert
wc_HashUpdate
wc_Hash_ex
wc_HmacFinal
wc_HmacFree
wc_HmacInit
wc_HmacInit_Id
wc_HmacInit_Label
wc_HmacSetKey
wc_HmacSizeByType
wc_HmacUpdate
wc_InitAndAllocMutex
wc_InitCert
wc_InitCert_ex
wc_InitDecodedCert
wc_InitDhKey
wc_InitDhKey_ex
wc_InitMd5
wc_InitMd5_ex
wc_InitMutex
wc_InitRng
wc_InitRngNonce
wc_InitRngNonce_ex
wc_InitRng_ex
wc_InitRsaKey
wc_InitRsaKey_Id
wc_InitRsaKey_Label
wc_InitRsaKey_ex
wc_InitRwLock
wc_InitSha
wc_InitSha224
wc_InitSha224_ex
wc_InitSha256
wc_InitSha256_ex
wc_InitSha384
wc_InitSha384_ex
wc_InitSha3_224
wc_InitSha3_256
wc_InitSha3_384
wc_InitSha3_512
wc_InitSha512
wc_InitSha512_224
wc_InitSha512_224_ex
wc_InitSha512_256
wc_InitSha512_256_ex
wc_InitSha512_ex
wc_InitSha_ex
wc_KeyPemToDer
wc_LockMutex
wc_LockMutex_ex
wc_LockRwLock_Rd
wc_LockRwLock_Wr
wc_MakeCert
wc_MakeCertReq
wc_MakeCertReq_ex
wc_MakeCert_ex
wc_MakeRsaKey
wc_MakeSelfCert
wc_Md5Copy
wc_Md5Final
wc_Md5Free
wc_Md5GetFlags
wc_Md5GetHash
wc_Md5Hash
wc_Md5Hash_ex
wc_Md5SetFlags
wc_Md5Transform
wc_Md5Update
wc_OidGetHash
wc_PBKDF1
wc_PBKDF1_ex
wc_PBKDF2
wc_PBKDF2_ex
wc_PKCS12_PBKDF
wc_PKCS12_PBKDF_ex
wc_PKCS12_create
wc_PKCS12_free
wc_PKCS12_new
wc_PKCS12_parse
wc_PKCS7_AddCertificate
wc_PKCS7_AddRecipient_KARI
wc_PKCS7_AddRecipient_KEKRI
wc_PKCS7_AddRecipient_KTRI
wc_PKCS7_AddRecipient_ORI
wc_PKCS7_AddRecipient_PWRI
wc_PKCS7_AllowDegenerate
wc_PKCS7_DecodeAuthEnvelopedData
wc_PKCS7_DecodeEncryptedData
wc_PKCS7_DecodeEnvelopedData
wc_PKCS7_EncodeAuthEnvelopedData
wc_PKCS7_EncodeData
wc_PKCS7_EncodeEncryptedData
wc_PKCS7_EncodeEnvelopedData
wc_PKCS7_EncodeSignedData
wc_PKCS7_EncodeSignedData_ex
wc_PKCS7_EncodeSignedEncryptedFPD
wc_PKCS7_EncodeSignedFPD
wc_PKCS7_Free
wc_PKCS7_GetAttributeValue
wc_PKCS7_GetNoCerts
wc_PKCS7_GetPadSize
wc_PKCS7_GetSignerSID
wc_PKCS7_GetStreamMode
wc_PKCS7_Init
wc_PKCS7_InitWithCert
wc_PKCS7_New
wc_PKCS7_NoDefaultSignedAttribs
wc_PKCS7_PadData
wc_PKCS7_SetContentType
wc_PKCS7_SetDecodeEncryptedCb
wc_PKCS7_SetDecodeEncryptedCtx
wc_PKCS7_SetDefaultSignedAttribs
wc_PKCS7_SetDetached
wc_PKCS7_SetKey
wc_PKCS7_SetNoCerts
wc_PKCS7_SetOriDecryptCb
wc_PKCS7_SetOriDecryptCtx
wc_PKCS7_SetOriEncryptCtx
wc_PKCS7_SetPassword
wc_PKCS7_SetSignerIdentifierType
wc_PKCS7_SetStreamMode
wc_PKCS7_SetWrapCEKCb
wc_PKCS7_VerifySignedData
wc_PKCS7_VerifySignedData_ex
wc_PRF
wc_PRF_TLS
wc_PRF_TLSv1
wc_ParseCert
wc_PemCertToDer
wc_PemCertToDer_ex
wc_PemGetHeaderFooter
wc_PemPubKeyToDer
wc_PemPubKeyToDer_ex
wc_PemToDer
wc_Poly1305Final
wc_Poly1305SetKey
wc_Poly1305Update
wc_Poly1305_EncodeSizes
wc_Poly1305_EncodeSizes64
wc_Poly1305_MAC
wc_Poly1305_Pad
wc_PubKeyPemToDer
wc_RNG_GenerateBlock
wc_RNG_GenerateByte
wc_RNG_HealthTest
wc_RNG_HealthTest_ex
wc_RNG_TestSeed
wc_ReadDirClose
wc_ReadDirFirst
wc_ReadDirNext
wc_RsaEncryptSize
wc_RsaExportKey
wc_RsaFlattenPublicKey
wc_RsaFunction
wc_RsaKeyToDer
wc_RsaKeyToPublicDer
wc_RsaKeyToPublicDer_ex
wc_RsaPSS_CheckPadding
wc_RsaPSS_CheckPadding_ex
wc_RsaPSS_CheckPadding_ex2
wc_RsaPSS_Sign
wc_RsaPSS_Sign_ex
wc_RsaPSS_Verify
wc_RsaPSS_VerifyCheck
wc_RsaPSS_VerifyCheckInline
wc_RsaPSS_VerifyInline
wc_RsaPSS_VerifyInline_ex
wc_RsaPSS_Verify_ex
wc_RsaPrivateDecrypt
wc_RsaPrivateDecryptInline
wc_RsaPrivateDecryptInline_ex
wc_RsaPrivateDecrypt_ex
wc_RsaPrivateKeyDecode
wc_RsaPrivateKeyValidate
wc_RsaPublicEncrypt
wc_RsaPublicEncrypt_ex
wc_RsaPublicKeyDecode
wc_RsaPublicKeyDecodeRaw
wc_RsaPublicKeyDecode_ex
wc_RsaPublicKeyDerSize
wc_RsaSSL_Sign
wc_RsaSSL_Verify
wc_RsaSSL_VerifyInline
wc_RsaSSL_Verify_ex
wc_RsaSSL_Verify_ex2
wc_RsaSetRNG
wc_SetAuthKeyId
wc_SetAuthKeyIdFromCert
wc_SetAuthKeyIdFromPublicKey
wc_SetAuthKeyIdFromPublicKey_ex
wc_SetCustomExtension
wc_SetExtKeyUsage
wc_SetIssuer
wc_SetIssuerBuffer
wc_SetIssuerRaw
wc_SetKeyUsage
wc_SetLoggingHeap
wc_SetMutexCb
wc_SetSubject
wc_SetSubjectBuffer
wc_SetSubjectKeyId
wc_SetSubjectKeyIdFromPublicKey
wc_SetSubjectKeyIdFromPublicKey_ex
wc_SetSubjectRaw
wc_SetTimeCb
wc_Sha224Copy
wc_Sha224Final
wc_Sha224Free
wc_Sha224GetFlags
wc_Sha224GetHash
wc_Sha224Hash
wc_Sha224Hash_ex
wc_Sha224SetFlags
wc_Sha224Update
wc_Sha256Copy
wc_Sha256Final
wc_Sha256FinalRaw
wc_Sha256Free
wc_Sha256GetFlags
wc_Sha256GetHash
wc_Sha256Hash
wc_Sha256Hash_ex
wc_Sha256SetFlags
wc_Sha256Transform
wc_Sha256Update
wc_Sha384Copy
wc_Sha384Final
wc_Sha384FinalRaw
wc_Sha384Free
wc_Sha384GetFlags
wc_Sha384GetHash
wc_Sha384Hash
wc_Sha384Hash_ex
wc_Sha384SetFlags
wc_Sha384Update
wc_Sha3_224Hash
wc_Sha3_224Hash_ex
wc_Sha3_224_Copy
wc_Sha3_224_Final
wc_Sha3_224_Free
wc_Sha3_224_GetHash
wc_Sha3_224_Update
wc_Sha3_256Hash
wc_Sha3_256Hash_ex
wc_Sha3_256_Copy
wc_Sha3_256_Final
wc_Sha3_256_Free
wc_Sha3_256_GetHash
wc_Sha3_256_Update
wc_Sha3_384Hash
wc_Sha3_384Hash_ex
wc_Sha3_384_Copy
wc_Sha3_384_Final
wc_Sha3_384_Free
wc_Sha3_384_GetHash
wc_Sha3_384_Update
wc_Sha3_512Hash
wc_Sha3_512Hash_ex
wc_Sha3_512_Copy
wc_Sha3_512_Final
wc_Sha3_512_Free
wc_Sha3_512_GetHash
wc_Sha3_512_Update
wc_Sha3_GetFlags
wc_Sha3_SetFlags
wc_Sha512Copy
wc_Sha512Final
wc_Sha512FinalRaw
wc_Sha512Free
wc_Sha512GetFlags
wc_Sha512GetHash
wc_Sha512Hash
wc_Sha512Hash_ex
wc_Sha512SetFlags
wc_Sha512Transform
wc_Sha512Update
wc_Sha512_224Copy
wc_Sha512_224Final
wc_Sha512_224FinalRaw
wc_Sha512_224Free
wc_Sha512_224GetFlags
wc_Sha512_224GetHash
wc_Sha512_224Hash
wc_Sha512_224Hash_ex
wc_Sha512_224SetFlags
wc_Sha512_224Transform
wc_Sha512_224Update
wc_Sha512_256Copy
wc_Sha512_256Final
wc_Sha512_256FinalRaw
wc_Sha512_256Free
wc_Sha512_256GetFlags
wc_Sha512_256GetHash
wc_Sha512_256Hash
wc_Sha512_256Hash_ex
wc_Sha512_256SetFlags
wc_Sha512_256Transform
wc_Sha512_256Update
wc_ShaCopy
wc_ShaFinal
wc_ShaFinalRaw
wc_ShaFree
wc_ShaGetFlags
wc_ShaGetHash
wc_ShaHash
wc_ShaHash_ex
Sections
.text Size: 886KB - Virtual size: 886KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 231KB - Virtual size: 231KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 34KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 54KB - Virtual size: 53KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ