dpapi.dll
- File Path:
C:\Windows\system32\dpapi.dll
- Description: Data Protection API
Hashes
| Type |
Hash |
| MD5 |
BC3EF1D4F109A82BDFE085604B822517 |
| SHA1 |
E594FDB145DE850541FA51A416D96EBA92AC2877 |
| SHA256 |
892D7846323AB7E9590B01C81E9AD037518122EF45D76F2EA94149B483EF92DE |
| SHA384 |
88F67B8124B0007E5DF58BC0B7D539FB830AE04A61073DD838EC2BC7BAF7BB7CCBCF5CCD856C27C02352E25F55459D1E |
| SHA512 |
9E177A4DE0965E081793B9E4CD96A5668C32DC9D5837E01B6E2E884FEC12F2AD0DBA3E5AB642DA0B193147329C6984E0AD807040CEB680651BBD32028780AA17 |
| SSDEEP |
192:A31Z4NWKCzI0tYZuRLFOw+M+DUjGdnHQHtfU+EcNWthviL8WCVWDt:ADiWKMvt9LFObMuSGKNfUMWtoYWCVWR |
| IMP |
C591E3A4DDFE145A26EEC16DB70623B7 |
| PESHA1 |
8D5BCAAA72E1F59F27D690FDF577E65D29BC6E62 |
| PE256 |
82A3BABCAF2F501E124AD47F43887FBF0DDF6334F0E082167EB3063C76ED4A36 |
DLL Exports:
| Function Name |
Ordinal |
Type |
CryptUnprotectMemory |
5 |
Exported Function |
CryptUpdateProtectedState |
6 |
Exported Function |
iCryptIdentifyProtection |
7 |
Exported Function |
CryptUnprotectDataNoUI |
4 |
Exported Function |
CryptProtectDataNoUI |
1 |
Exported Function |
CryptProtectMemory |
2 |
Exported Function |
CryptResetMachineCredentials |
3 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: dpapi.dll
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/66
- VirusTotal Link: https://www.virustotal.com/gui/file/892d7846323ab7e9590b01c81e9ad037518122ef45d76f2ea94149b483ef92de/detection/
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.