¿Para qué sirve la dll dpapi.dll?
Data Protection APIDependencias de la dll dpapi.dll
Microsoft (R) COFF/PE Dumper Version 14.16.27034.0
Copyright (C) Microsoft Corporation. All rights reserved.
Dump of file C:\Windows\System32\dpapi.dll
File Type: DLL
Image has the following dependencies:
ntdll.dll
api-ms-win-core-heap-l2-1-0.dll
api-ms-win-core-errorhandling-l1-1-0.dll
api-ms-win-security-base-l1-1-0.dll
api-ms-win-core-registry-l1-1-0.dll
api-ms-win-core-libraryloader-l1-2-0.dll
api-ms-win-core-profile-l1-1-0.dll
api-ms-win-core-processthreads-l1-1-0.dll
api-ms-win-core-sysinfo-l1-1-0.dll
api-ms-win-core-delayload-l1-1-1.dll
api-ms-win-core-delayload-l1-1-0.dll
Image has the following delay load dependencies:
RPCRT4.dll
CRYPTBASE.dll
SAMLIB.dll
Summary
1000 .data
1000 .didat
1000 .pdata
2000 .rdata
1000 .reloc
1000 .rsrc
2000 .text
Funciones que tiene la dll dpapi.dll
1 0 00001010 CryptProtectDataNoUI
2 1 00001700 CryptProtectMemory
3 2 00002370 CryptResetMachineCredentials
4 3 00001360 CryptUnprotectDataNoUI
5 4 000016D0 CryptUnprotectMemory
6 5 00002120 CryptUpdateProtectedState
7 6 00001730 iCryptIdentifyProtection
Información avanzada sobre funciones que tiene la dll dpapi.dll
Microsoft (R) COFF/PE Dumper Version 14.16.27034.0
Copyright (C) Microsoft Corporation. All rights reserved.
Dump of file C:\Windows\System32\dpapi.dll
File Type: DLL
Section contains the following exports for DPAPI.dll
00000000 characteristics
821D1564 time date stamp
0.00 version
1 ordinal base
7 number of functions
7 number of names
ordinal hint RVA name
1 0 00001010 CryptProtectDataNoUI
2 1 00001700 CryptProtectMemory
3 2 00002370 CryptResetMachineCredentials
4 3 00001360 CryptUnprotectDataNoUI
5 4 000016D0 CryptUnprotectMemory
6 5 00002120 CryptUpdateProtectedState
7 6 00001730 iCryptIdentifyProtection
Summary
1000 .data
1000 .didat
1000 .pdata
2000 .rdata
1000 .reloc
1000 .rsrc
2000 .text
Integridad de la dll dpapi.dll
Algorithm Hash Path
--------- ---- ----
SHA256 1C00F2882E1D7F7A630E5F931613BB34A740290455763492F1AB416A39922B5D C:\Windows\System32\dpapi.dll
Detalles sobre el fichero dll dpapi.dll
PSPath : Microsoft.PowerShell.Core\FileSystem::C:\Windows\System32\dpapi.dll
PSParentPath : Microsoft.PowerShell.Core\FileSystem::C:\Windows\System32
PSChildName : dpapi.dll
PSDrive : C
PSProvider : Microsoft.PowerShell.Core\FileSystem
PSIsContainer : False
Mode : -a----
VersionInfo : File: C:\Windows\System32\dpapi.dll
InternalName: dpapi.dll
OriginalFilename: dpapi.dll
FileVersion: 10.0.19041.546 (WinBuild.160101.0800)
FileDescription: Data Protection API
Product: Microsoft® Windows® Operating System
ProductVersion: 10.0.19041.546
Debug: False
Patched: False
PreRelease: False
PrivateBuild: False
SpecialBuild: False
Language: Inglés (Estados Unidos)
BaseName : dpapi
Target : {C:\Windows\WinSxS\amd64_microsoft-windows-dpapi-dll_31bf3856ad364e35_10.0.19041.546_none_55dda30e714dd974\dpapi
.dll}
LinkType : HardLink
Name : dpapi.dll
Length : 16384
DirectoryName : C:\Windows\System32
Directory : C:\Windows\System32
IsReadOnly : False
Exists : True
FullName : C:\Windows\System32\dpapi.dll
Extension : .dll
CreationTime : 21/11/2020 8:44:14
CreationTimeUtc : 21/11/2020 7:44:14
LastAccessTime : 03/12/2020 10:08:59
LastAccessTimeUtc : 03/12/2020 9:08:59
LastWriteTime : 21/11/2020 8:44:14
LastWriteTimeUtc : 21/11/2020 7:44:14
Attributes : Archive
Procesos que utilizan la dll dpapi.dll
backgroundTaskHost
chrome
Cortana
GameBar
KinectService
Microsoft.Photos
RuntimeBroker
SearchApp
SpeechRuntime
Video.UI
YourPhone