C:\Users\shichuii\source\repos\ConsoleApplication1\x64\Debug\MelanExpliot.pdb
Static task
static1
1 signatures
General
-
Target
MelanExpliot.rar
-
Size
728KB
-
MD5
4ccdd46fbda7a4755ddd7cae0d8e0702
-
SHA1
1bc08613a32987d1f7c20d047cbf0f7b50bc7d64
-
SHA256
41a8692601553760322077b21074794baf7dd0fe762fb377b2937aa846c2a55f
-
SHA512
9d840a8253bd5820173800ae6247b8fc74a9e9353cfc22f3221f97d36a89984e36ad9998d101d09082203b0941796f4536555b588f53ddeb081b130ad8cede50
-
SSDEEP
12288:LTGo9Zfm0NZJ77gNFpmHbRJTdjMFV6kLSjHTNt2+nkeL6XvCz8Gof0lZys:uGRp77g3gtJTtG9SHNt2+keeXvCzA0l9
Score
3/10
Malware Config
Signatures
-
Unsigned PE 3 IoCs
Checks for missing Authenticode signature.
resource unpack001/MelanExpliot.exe unpack001/libcurl-d.dll unpack001/zlibd1.dll
Files
-
MelanExpliot.rar.rar
-
MelanExpliot.exe.exe windows:6 windows x64 arch:x64
2d71612d09f15b33859cff5fe6ddec0d
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
kernel32
DeleteFileA
GetFileAttributesA
SetFileAttributesA
CloseHandle
WaitForSingleObject
CreateProcessW
GetConsoleWindow
FreeLibrary
VirtualQuery
GetProcessHeap
HeapFree
HeapAlloc
GetLastError
GetModuleHandleW
GetStartupInfoW
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
WideCharToMultiByte
MultiByteToWideChar
RaiseException
IsDebuggerPresent
GetCurrentThreadId
GetProcAddress
user32
UnhookWindowsHookEx
SetWindowsHookExW
GetClassNameW
EnumWindows
ShowWindow
CallNextHookEx
SendMessageW
libcurl-d
curl_easy_setopt
curl_easy_strerror
curl_easy_cleanup
curl_easy_getinfo
curl_global_cleanup
curl_easy_perform
curl_easy_init
curl_global_init
msvcp140d
?_Getmonths@_Locinfo@std@@QEBAPEBDXZ
?_W_Getdays@_Locinfo@std@@QEBAPEBGXZ
?_W_Getmonths@_Locinfo@std@@QEBAPEBGXZ
??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z
??2_Crt_new_delete@std@@SAPEAX_K@Z
??3_Crt_new_delete@std@@SAXPEAX@Z
??Bid@locale@std@@QEAA_KXZ
?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z
?_Addfac@_Locimp@locale@std@@AEAAXPEAVfacet@23@_K@Z
?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?always_noconv@codecvt_base@std@@QEBA_NXZ
?in@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEA_W3AEAPEA_W@Z
??0?$codecvt@_WDU_Mbstatet@@@std@@QEAA@_K@Z
??1?$codecvt@_WDU_Mbstatet@@@std@@MEAA@XZ
?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?good@ios_base@std@@QEBA_NXZ
?flags@ios_base@std@@QEBAHXZ
?width@ios_base@std@@QEBA_JXZ
?width@ios_base@std@@QEAA_J_J@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Pnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAPEAD0PEAH001@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAG_W@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAA_JPEB_W_J@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAAXH_N@Z
?tie@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBAPEAV?$basic_ostream@_WU?$char_traits@_W@std@@@2@XZ
?rdbuf@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBAPEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@2@XZ
?fill@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBA_WXZ
?widen@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBA_WD@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@J@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAXXZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
?put@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@_W@Z
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Fiopen@std@@YAPEAU_iobuf@@PEBDHH@Z
?_Incref@facet@locale@std@@UEAAXXZ
?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ
?_Getcvt@_Locinfo@std@@QEBA?AU_Cvtvec@@XZ
?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?wcerr@std@@3V?$basic_ostream@_WU?$char_traits@_W@std@@@1@A
?_Getdays@_Locinfo@std@@QEBAPEBDXZ
??0_Lockit@std@@QEAA@H@Z
??1_Lockit@std@@QEAA@XZ
?_Xbad_alloc@std@@YAXXZ
?_Xlength_error@std@@YAXPEBD@Z
?_Xout_of_range@std@@YAXPEBD@Z
?uncaught_exception@std@@YA_NXZ
_Mbrtowc
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
vcruntime140d
__vcrt_GetModuleHandleW
__vcrt_GetModuleFileNameW
__current_exception_context
__C_specific_handler
__std_type_info_destroy_list
__C_specific_handler_noexcept
__vcrt_LoadLibraryExW
memcpy
memmove
memset
__std_exception_copy
__std_exception_destroy
_CxxThrowException
__current_exception
vcruntime140_1d
__CxxFrameHandler4
ucrtbased
_CrtDbgReportW
_seh_filter_exe
_set_app_type
__setusermatherr
_configure_wide_argv
_initialize_wide_environment
_get_initial_wide_environment
_initterm
_initterm_e
_exit
_set_fmode
__p___argc
__p___wargv
_fseeki64
_c_exit
_register_thread_local_exe_atexit_callback
_configthreadlocale
_set_new_mode
__p__commode
_callnewh
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
strcpy_s
strcat_s
__stdio_common_vsprintf_s
terminate
_wmakepath_s
_wsplitpath_s
wcscpy_s
_malloc_dbg
_free_dbg
fsetpos
fread
fputc
fgetpos
fgetc
fflush
malloc
strlen
wcslen
wcscmp
_unlock_file
_lock_file
ungetc
setvbuf
_seh_filter_dll
fclose
_get_stream_buffer_pointers
system
exit
_CrtDbgReport
_calloc_dbg
_invalid_parameter
fwrite
_cexit
Sections
.textbss Size: - Virtual size: 64KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 129KB - Virtual size: 129KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 42KB - Virtual size: 42KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 14KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 14KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.msvcjmc Size: 1024B - Virtual size: 576B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.00cfg Size: 512B - Virtual size: 373B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
MelanExpliot.pdb
-
libcurl-d.dll.dll windows:6 windows x64 arch:x64
2dde27d34492cd47a6afbf2ecb262169
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
C:\vcpkg\buildtrees\curl\x64-windows-dbg\lib\libcurl-d.pdb
Imports
ws2_32
WSASetLastError
WSAGetLastError
bind
connect
getpeername
htons
ntohs
setsockopt
sendto
recvfrom
WSACleanup
WSAStartup
select
__WSAFDIsSet
ntohl
htonl
ioctlsocket
WSAWaitForMultipleEvents
WSASetEvent
WSAResetEvent
WSAEventSelect
WSAEnumNetworkEvents
WSACreateEvent
WSACloseEvent
socket
send
recv
inet_pton
WSAIoctl
inet_ntop
getaddrinfo
freeaddrinfo
gethostname
listen
accept
closesocket
getsockname
getsockopt
bcrypt
BCryptGenRandom
zlibd1
inflate
inflateEnd
inflateInit_
inflateInit2_
zlibVersion
advapi32
CryptGetHashParam
CryptReleaseContext
CryptDestroyKey
CryptImportKey
CryptEncrypt
CryptCreateHash
CryptHashData
CryptDestroyHash
OpenThreadToken
CryptAcquireContextW
crypt32
CertFreeCertificateContext
CryptDecodeObjectEx
CertEnumCertificatesInStore
CertCloseStore
CertOpenStore
CryptStringToBinaryW
PFXImportCertStore
CertAddCertificateContextToStore
CertFindExtension
CertGetNameStringW
CryptQueryObject
CertCreateCertificateChainEngine
CertFreeCertificateChainEngine
CertGetCertificateChain
CertFreeCertificateChain
CertFindCertificateInStore
kernel32
GetCurrentProcessId
MoveFileExW
Sleep
GetEnvironmentVariableA
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
WaitForSingleObjectEx
GetProcAddress
FreeLibrary
GetLastError
CreateFileW
VerifyVersionInfoW
VerSetConditionMask
GetTickCount
QueryPerformanceCounter
WaitForMultipleObjects
PeekNamedPipe
ReadFile
GetFileType
SetLastError
FormatMessageW
QueryPerformanceFrequency
GetCurrentThread
GetSystemDirectoryW
VirtualQuery
GetModuleHandleA
GetModuleHandleW
LoadLibraryW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
RaiseException
GetStartupInfoW
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
HeapAlloc
HeapFree
GetProcessHeap
GetFileSizeEx
CloseHandle
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
SetEvent
WaitForSingleObject
CreateEventW
MultiByteToWideChar
SleepEx
WideCharToMultiByte
GetStdHandle
vcruntime140d
memset
memchr
strchr
memmove
strrchr
memcmp
wcschr
memcpy
__C_specific_handler
__C_specific_handler_noexcept
__current_exception
__current_exception_context
__std_type_info_destroy_list
__vcrt_GetModuleFileNameW
__vcrt_GetModuleHandleW
__vcrt_LoadLibraryExW
strstr
ucrtbased
strcmp
strcpy
strcspn
__acrt_iob_func
qsort
feof
fgets
strncpy
_wopen
_wfopen
_wstat64
free
malloc
wcsncpy
_beginthreadex
fwrite
realloc
calloc
_wcsdup
_errno
_lseeki64
fread
_fseeki64
strftime
fclose
fflush
fseek
fputc
__stdio_common_vsprintf
atoi
_gmtime64
strpbrk
__sys_errlist
__sys_nerr
wcstombs
strtoll
wcscpy
strncmp
wcsncmp
ftell
_CrtDbgReport
_CrtDbgReportW
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
_cexit
_initterm
_initterm_e
strcpy_s
strcat_s
__stdio_common_vsprintf_s
terminate
_wmakepath_s
_wsplitpath_s
wcscpy_s
_unlink
_strdup
_close
_fileno
_fdopen
_read
_write
_time64
getenv
strtoul
strtol
_wassert
__stdio_common_vsscanf
fputs
strspn
strlen
__stdio_common_vswprintf
wcspbrk
wcslen
_fstat64
Exports
Exports
Curl_FreeAddrInfoExW
Curl_GetAddrInfoExCancel
Curl_GetAddrInfoExW
Curl_GetFTPResponse
Curl_HMAC_final
Curl_HMAC_init
Curl_HMAC_update
Curl_MD5_final
Curl_MD5_init
Curl_MD5_update
Curl_SOCKS5_gssapi_negotiate
Curl_add_custom_headers
Curl_add_timecondition
Curl_addr2string
Curl_addrinfo_callback
Curl_all_content_encodings
Curl_alpn_set_negotiated
Curl_alpn_to_proto_buf
Curl_alpn_to_proto_str
Curl_alpnid2str
Curl_altsvc_cleanup
Curl_altsvc_ctrl
Curl_altsvc_init
Curl_altsvc_load
Curl_altsvc_lookup
Curl_altsvc_parse
Curl_altsvc_save
Curl_attach_connection
Curl_auth_allowed_to_host
Curl_auth_build_spn
Curl_auth_cleanup_gssapi
Curl_auth_cleanup_ntlm
Curl_auth_cleanup_spnego
Curl_auth_create_cram_md5_message
Curl_auth_create_digest_http_message
Curl_auth_create_digest_md5_message
Curl_auth_create_external_message
Curl_auth_create_gssapi_security_message
Curl_auth_create_gssapi_user_message
Curl_auth_create_login_message
Curl_auth_create_ntlm_type1_message
Curl_auth_create_ntlm_type3_message
Curl_auth_create_oauth_bearer_message
Curl_auth_create_plain_message
Curl_auth_create_spnego_message
Curl_auth_create_xoauth_bearer_message
Curl_auth_decode_digest_http_message
Curl_auth_decode_ntlm_type2_message
Curl_auth_decode_spnego_message
Curl_auth_digest_cleanup
Curl_auth_digest_get_pair
Curl_auth_is_digest_supported
Curl_auth_is_gssapi_supported
Curl_auth_is_ntlm_supported
Curl_auth_is_spnego_supported
Curl_auth_user_contains_domain
Curl_base64_decode
Curl_base64_encode
Curl_base64url_encode
Curl_blockread_all
Curl_bufcp_free
Curl_bufcp_init
Curl_bufq_cread
Curl_bufq_cwrite
Curl_bufq_free
Curl_bufq_init
Curl_bufq_init2
Curl_bufq_initp
Curl_bufq_is_empty
Curl_bufq_is_full
Curl_bufq_len
Curl_bufq_pass
Curl_bufq_peek
Curl_bufq_peek_at
Curl_bufq_read
Curl_bufq_reset
Curl_bufq_sipn
Curl_bufq_skip
Curl_bufq_slurp
Curl_bufq_space
Curl_bufq_write
Curl_bufq_write_pass
Curl_bufref_free
Curl_bufref_init
Curl_bufref_len
Curl_bufref_memdup
Curl_bufref_ptr
Curl_bufref_set
Curl_build_unencoding_stack
Curl_bump_headersize
Curl_cache_addr
Curl_ccalloc
Curl_cert_hostcheck
Curl_cf_create
Curl_cf_def_adjust_pollset
Curl_cf_def_cntrl
Curl_cf_def_conn_is_alive
Curl_cf_def_conn_keep_alive
Curl_cf_def_data_pending
Curl_cf_def_get_host
Curl_cf_def_query
Curl_cf_def_recv
Curl_cf_def_send
Curl_cf_def_shutdown
Curl_cf_h1_proxy_insert_after
Curl_cf_haproxy_insert_after
Curl_cf_http_proxy_get_host
Curl_cf_http_proxy_insert_after
Curl_cf_https_setup
Curl_cf_recv
Curl_cf_send
Curl_cf_setup_insert_after
Curl_cf_socket_peek
Curl_cf_socks_proxy_insert_after
Curl_cf_ssl_insert_after
Curl_cf_ssl_proxy_insert_after
Curl_cf_tcp_create
Curl_cf_udp_create
Curl_cf_unix_create
Curl_cfree
Curl_cft_h1_proxy
Curl_cft_happy_eyeballs
Curl_cft_haproxy
Curl_cft_http_connect
Curl_cft_http_proxy
Curl_cft_setup
Curl_cft_socks_proxy
Curl_cft_ssl
Curl_cft_ssl_proxy
Curl_cft_tcp
Curl_cft_tcp_accept
Curl_cft_udp
Curl_cft_unix
Curl_checkProxyheaders
Curl_check_noproxy
Curl_checkheaders
Curl_client_cleanup
Curl_client_read
Curl_client_reset
Curl_client_start
Curl_client_write
Curl_close
Curl_cmalloc
Curl_compareheader
Curl_conn_adjust_pollset
Curl_conn_cf_add
Curl_conn_cf_adjust_pollset
Curl_conn_cf_close
Curl_conn_cf_cntrl
Curl_conn_cf_connect
Curl_conn_cf_discard_all
Curl_conn_cf_discard_chain
Curl_conn_cf_discard_sub
Curl_conn_cf_get_socket
Curl_conn_cf_insert_after
Curl_conn_cf_is_ssl
Curl_conn_cf_poll
Curl_conn_cf_recv
Curl_conn_cf_send
Curl_conn_close
Curl_conn_connect
Curl_conn_data_pending
Curl_conn_ev_data_attach
Curl_conn_ev_data_detach
Curl_conn_ev_data_done
Curl_conn_ev_data_done_send
Curl_conn_ev_data_idle
Curl_conn_ev_data_pause
Curl_conn_ev_data_setup
Curl_conn_ev_update_info
Curl_conn_forget_socket
Curl_conn_free
Curl_conn_get_host
Curl_conn_get_max_concurrent
Curl_conn_get_socket
Curl_conn_get_stream_error
Curl_conn_is_alive
Curl_conn_is_connected
Curl_conn_is_ip_connected
Curl_conn_is_multiplex
Curl_conn_is_ssl
Curl_conn_keep_alive
Curl_conn_may_http3
Curl_conn_recv
Curl_conn_send
Curl_conn_setup
Curl_conn_shutdown
Curl_conn_shutdown_timeleft
Curl_conn_sockindex
Curl_conn_tcp_accepted_set
Curl_conn_tcp_listen_set
Curl_conncache_add_conn
Curl_conncache_add_pollfds
Curl_conncache_add_waitfds
Curl_conncache_close_all_connections
Curl_conncache_destroy
Curl_conncache_disconnect
Curl_conncache_extract_bundle
Curl_conncache_extract_oldest
Curl_conncache_find_bundle
Curl_conncache_foreach
Curl_conncache_init
Curl_conncache_multi_close_all
Curl_conncache_multi_perform
Curl_conncache_multi_socket
Curl_conncache_remove_conn
Curl_conncache_return_conn
Curl_conncache_size
Curl_conncontrol
Curl_connect
Curl_cookie_add
Curl_cookie_cleanup
Curl_cookie_clearall
Curl_cookie_clearsess
Curl_cookie_freelist
Curl_cookie_getlist
Curl_cookie_init
Curl_cookie_list
Curl_cookie_loadfiles
Curl_copy_header_value
Curl_creader_add
Curl_creader_client_length
Curl_creader_create
Curl_creader_def_close
Curl_creader_def_done
Curl_creader_def_init
Curl_creader_def_is_paused
Curl_creader_def_needs_rewind
Curl_creader_def_read
Curl_creader_def_resume_from
Curl_creader_def_rewind
Curl_creader_def_total_length
Curl_creader_def_unpause
Curl_creader_done
Curl_creader_free
Curl_creader_get_by_type
Curl_creader_is_paused
Curl_creader_needs_rewind
Curl_creader_read
Curl_creader_resume_from
Curl_creader_set
Curl_creader_set_buf
Curl_creader_set_fread
Curl_creader_set_mime
Curl_creader_set_null
Curl_creader_set_rewind
Curl_creader_total_length
Curl_creader_unpause
Curl_creader_will_rewind
Curl_crealloc
Curl_create_sspi_identity
Curl_cstrdup
Curl_cw_out_done
Curl_cw_out_is_paused
Curl_cw_out_unpause
Curl_cwcsdup
Curl_cwriter_add
Curl_cwriter_count
Curl_cwriter_create
Curl_cwriter_def_close
Curl_cwriter_def_init
Curl_cwriter_def_write
Curl_cwriter_free
Curl_cwriter_get_by_name
Curl_cwriter_get_by_type
Curl_cwriter_is_paused
Curl_cwriter_remove_by_name
Curl_cwriter_unpause
Curl_cwriter_write
Curl_cwt_out
Curl_debug
Curl_des_set_odd_parity
Curl_detach_connection
Curl_disconnect
Curl_doh
Curl_doh_cleanup
Curl_doh_close
Curl_doh_is_resolved
Curl_doh_trc
Curl_dyn_add
Curl_dyn_addf
Curl_dyn_addn
Curl_dyn_free
Curl_dyn_init
Curl_dyn_len
Curl_dyn_ptr
Curl_dyn_reset
Curl_dyn_setlen
Curl_dyn_tail
Curl_dyn_uptr
Curl_dyn_vaddf
Curl_dyn_vprintf
Curl_dynhds_add
Curl_dynhds_add_custom
Curl_dynhds_cadd
Curl_dynhds_cget
Curl_dynhds_count
Curl_dynhds_free
Curl_dynhds_get
Curl_dynhds_getn
Curl_dynhds_h1_add_line
Curl_dynhds_h1_cadd_line
Curl_dynhds_h1_dprint
Curl_dynhds_init
Curl_dynhds_reset
Curl_dynhds_set_opts
Curl_easyopts
Curl_easyopts_check
Curl_expire
Curl_expire_clear
Curl_expire_done
Curl_extract_certinfo
Curl_failf
Curl_fetch_addr
Curl_fileinfo_alloc
Curl_fileinfo_cleanup
Curl_flush_cookies
Curl_fnmatch
Curl_follow
Curl_fopen
Curl_freeaddrinfo
Curl_freeset
Curl_ftp_parselist
Curl_ftp_parselist_data_alloc
Curl_ftp_parselist_data_free
Curl_ftp_parselist_geterror
Curl_get_line
Curl_get_scheme_handler
Curl_getaddrinfo
Curl_getaddrinfo_ex
Curl_getconnectinfo
Curl_getdate_capped
Curl_getformdata
Curl_gethostname
Curl_getinfo
Curl_getn_scheme_handler
Curl_gmtime
Curl_h1_req_parse_free
Curl_h1_req_parse_init
Curl_h1_req_parse_read
Curl_h1_req_write_head
Curl_hash_add
Curl_hash_add2
Curl_hash_clean
Curl_hash_clean_with_criterium
Curl_hash_delete
Curl_hash_destroy
Curl_hash_init
Curl_hash_next_element
Curl_hash_offt_get
Curl_hash_offt_init
Curl_hash_offt_remove
Curl_hash_offt_set
Curl_hash_pick
Curl_hash_start_iterate
Curl_hash_str
Curl_he2ai
Curl_headers_cleanup
Curl_headers_init
Curl_headers_push
Curl_hexencode
Curl_hmacit
Curl_host_is_ipnum
Curl_hostcache_clean
Curl_hostcache_prune
Curl_hsts
Curl_hsts_cleanup
Curl_hsts_init
Curl_hsts_loadcb
Curl_hsts_loadfile
Curl_hsts_loadfiles
Curl_hsts_parse
Curl_hsts_save
Curl_http
Curl_http_auth_act
Curl_http_auth_cleanup_digest
Curl_http_auth_cleanup_negotiate
Curl_http_auth_cleanup_ntlm
Curl_http_connect
Curl_http_cookies
Curl_http_decode_status
Curl_http_done
Curl_http_exp100_got100
Curl_http_exp100_is_selected
Curl_http_firstwrite
Curl_http_getsock_do
Curl_http_header
Curl_http_host
Curl_http_input_auth
Curl_http_method
Curl_http_output_auth
Curl_http_proxy_create_CONNECT
Curl_http_proxy_get_destination
Curl_http_range
Curl_http_req_complete
Curl_http_req_free
Curl_http_req_make
Curl_http_req_make2
Curl_http_req_set_reader
Curl_http_req_to_h2
Curl_http_resp_free
Curl_http_resp_make
Curl_http_setup_conn
Curl_http_size
Curl_http_statusline
Curl_http_target
Curl_http_useragent
Curl_http_write_resp
Curl_http_write_resp_hd
Curl_http_write_resp_hds
Curl_httpchunk_add_reader
Curl_httpchunk_free
Curl_httpchunk_init
Curl_httpchunk_is_done
Curl_httpchunk_read
Curl_httpchunk_reset
Curl_idnconvert_hostname
Curl_if2ip
Curl_if_nametoindex
Curl_infof
Curl_init_CONNECT
Curl_init_dnscache
Curl_init_do
Curl_init_sslset_nolock
Curl_init_userdefined
Curl_initinfo
Curl_input_digest
Curl_input_negotiate
Curl_input_ntlm
Curl_ip2addr
Curl_ipv6_scope
Curl_ipv6works
Curl_ipvalid
Curl_is_ASCII_name
Curl_is_absolute_url
Curl_is_in_callback
Curl_llist_append
Curl_llist_count
Curl_llist_destroy
Curl_llist_init
Curl_llist_insert_next
Curl_llist_remove
Curl_load_library
Curl_loadhostpairs
Curl_md4it
Curl_md5it
Curl_meets_timecondition
Curl_memdup
Curl_memdup0
Curl_memrchr
Curl_mime_add_header
Curl_mime_cleanpart
Curl_mime_contenttype
Curl_mime_duppart
Curl_mime_initpart
Curl_mime_prepare_headers
Curl_mime_read
Curl_mime_set_subparts
Curl_multi_add_perform
Curl_multi_closed
Curl_multi_connchanged
Curl_multi_handle
Curl_multi_max_concurrent_streams
Curl_multi_max_host_connections
Curl_multi_max_total_connections
Curl_multi_pollset_ev
Curl_multi_xfer_buf_borrow
Curl_multi_xfer_buf_release
Curl_multi_xfer_ulbuf_borrow
Curl_multi_xfer_ulbuf_release
Curl_multiplex_wanted
Curl_multiuse_state
Curl_none_cert_status_request
Curl_none_check_cxn
Curl_none_cleanup
Curl_none_close_all
Curl_none_data_pending
Curl_none_engines_list
Curl_none_false_start
Curl_none_init
Curl_none_random
Curl_none_session_free
Curl_none_set_engine
Curl_none_set_engine_default
Curl_none_shutdown
Curl_now
Curl_ntlm_core_lm_resp
Curl_ntlm_core_mk_lm_hash
Curl_ntlm_core_mk_nt_hash
Curl_once_resolved
Curl_open
Curl_output_aws_sigv4
Curl_output_digest
Curl_output_negotiate
Curl_output_ntlm
Curl_override_sspi_http_realm
Curl_parseX509
Curl_parse_interface
Curl_parse_login_details
Curl_parsenetrc
Sections
.text Size: 1.0MB - Virtual size: 1.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 184KB - Virtual size: 184KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 352KB - Virtual size: 355KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 26KB - Virtual size: 26KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 10KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.00cfg Size: 512B - Virtual size: 373B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
zlibd1.dll.dll windows:6 windows x64 arch:x64
111499be7044f7c187e2b36399b16c4a
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
C:\vcpkg\buildtrees\zlib\x64-windows-dbg\zlibd.pdb
Imports
vcruntime140d
__vcrt_GetModuleHandleW
__vcrt_GetModuleFileNameW
__current_exception_context
__current_exception
__std_type_info_destroy_list
__C_specific_handler_noexcept
__C_specific_handler
memmove
memchr
memcpy
memset
__vcrt_LoadLibraryExW
ucrtbased
_open
_close
_read
_write
wcscpy_s
_wsplitpath_s
_wmakepath_s
terminate
_crt_at_quick_exit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
__stdio_common_vsprintf_s
strcat_s
strcpy_s
_initterm_e
_initterm
_CrtDbgReportW
_CrtDbgReport
strerror
_errno
_lseeki64
_wopen
wcstombs
malloc
free
strlen
__stdio_common_vsprintf
_cexit
kernel32
GetStartupInfoW
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
RaiseException
MultiByteToWideChar
WideCharToMultiByte
GetProcAddress
FreeLibrary
VirtualQuery
GetProcessHeap
HeapFree
HeapAlloc
GetLastError
GetModuleHandleW
RtlCaptureContext
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
Exports
Exports
adler32
adler32_combine
adler32_z
compress
compress2
compressBound
crc32
crc32_combine
crc32_combine_gen
crc32_combine_op
crc32_z
deflate
deflateBound
deflateCopy
deflateEnd
deflateGetDictionary
deflateInit2_
deflateInit_
deflateParams
deflatePending
deflatePrime
deflateReset
deflateResetKeep
deflateSetDictionary
deflateSetHeader
deflateTune
get_crc_table
gzbuffer
gzclearerr
gzclose
gzclose_r
gzclose_w
gzdirect
gzdopen
gzeof
gzerror
gzflush
gzfread
gzfwrite
gzgetc
gzgetc_
gzgets
gzoffset
gzoffset64
gzopen
gzopen64
gzopen_w
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzseek64
gzsetparams
gztell
gztell64
gzungetc
gzvprintf
gzwrite
inflate
inflateBack
inflateBackEnd
inflateBackInit_
inflateCodesUsed
inflateCopy
inflateEnd
inflateGetDictionary
inflateGetHeader
inflateInit2_
inflateInit_
inflateMark
inflatePrime
inflateReset
inflateReset2
inflateResetKeep
inflateSetDictionary
inflateSync
inflateSyncPoint
inflateUndermine
inflateValidate
uncompress
uncompress2
zError
zlibCompileFlags
zlibVersion
Sections
.text Size: 152KB - Virtual size: 151KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 38KB - Virtual size: 38KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.00cfg Size: 512B - Virtual size: 373B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 999B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ