ipc_core.dll
Description:
Authors:
Version:
Architecture: 64-bit
Operating System:
SHA256: b8f3485e0b9d5b702bc5ccfe3c9083b7
File Size: 1.2 MB
Uploaded At: Dec. 2, 2025, 2:41 p.m.
Views: 6
Security Warning
This file has been flagged as potentially dangerous.
Reason: Detected potentially dangerous functions used for process injection: OpenProcess
Exported Functions
- CreateServiceHost (Ordinal: 1, Address: 0x1d84)
- CreateServiceInvoker (Ordinal: 2, Address: 0x13e8)
- DestroyServiceHost (Ordinal: 3, Address: 0x31bb)
- DestroyServiceInvoker (Ordinal: 4, Address: 0x1b72)
- InitIPCCoreRuntime (Ordinal: 5, Address: 0x1e1a)
Imported DLLs & Functions
ADVAPI32.dll
- CryptAcquireContextW (Address: 0x18013a028)
- CryptGenRandom (Address: 0x18013a038)
- CryptReleaseContext (Address: 0x18013a030)
- GetUserNameW (Address: 0x18013a008)
- OpenProcessToken (Address: 0x18013a000)
- RegCloseKey (Address: 0x18013a010)
- RegOpenKeyExW (Address: 0x18013a018)
- RegQueryValueExW (Address: 0x18013a020)
- SystemFunction036 (Address: 0x18013a040)
api-ms-win-crt-convert-l1-1-0.dll
- atoi (Address: 0x18013ad30)
- wcstombs (Address: 0x18013ad28)
api-ms-win-crt-environment-l1-1-0.dll
- getenv (Address: 0x18013ad90)
api-ms-win-crt-filesystem-l1-1-0.dll
- _umask (Address: 0x18013adf0)
- _wchmod (Address: 0x18013adf8)
- _wmkdir (Address: 0x18013ae00)
- _wrmdir (Address: 0x18013ae08)
api-ms-win-crt-heap-l1-1-0.dll
- _callnewh (Address: 0x18013ae80)
- calloc (Address: 0x18013ae78)
- free (Address: 0x18013ae70)
- malloc (Address: 0x18013ae68)
- realloc (Address: 0x18013ae88)
api-ms-win-crt-runtime-l1-1-0.dll
- __doserrno (Address: 0x18013aef0)
- _beginthreadex (Address: 0x18013af08)
- _cexit (Address: 0x18013af38)
- _configure_narrow_argv (Address: 0x18013af60)
- _crt_at_quick_exit (Address: 0x18013af40)
- _crt_atexit (Address: 0x18013af88)
- _errno (Address: 0x18013af18)
- _execute_onexit_table (Address: 0x18013af80)
- _initialize_narrow_environment (Address: 0x18013af68)
- _initialize_onexit_table (Address: 0x18013af70)
- _initterm (Address: 0x18013af30)
- _initterm_e (Address: 0x18013af28)
- _invalid_parameter_noinfo_noreturn (Address: 0x18013af20)
- _register_onexit_function (Address: 0x18013af78)
- _seh_filter_dll (Address: 0x18013af58)
- _set_invalid_parameter_handler (Address: 0x18013af50)
- abort (Address: 0x18013af00)
- exit (Address: 0x18013aef8)
- raise (Address: 0x18013af48)
- terminate (Address: 0x18013af10)
api-ms-win-crt-stdio-l1-1-0.dll
- __acrt_iob_func (Address: 0x18013b030)
- __p__fmode (Address: 0x18013b028)
- __stdio_common_vfprintf (Address: 0x18013b048)
- __stdio_common_vsnprintf_s (Address: 0x18013b040)
- __stdio_common_vsnwprintf_s (Address: 0x18013b060)
- __stdio_common_vsprintf (Address: 0x18013b058)
- _close (Address: 0x18013b050)
- _get_osfhandle (Address: 0x18013b038)
- _lseeki64 (Address: 0x18013b020)
- _open_osfhandle (Address: 0x18013b018)
- _read (Address: 0x18013b010)
- _write (Address: 0x18013b008)
api-ms-win-crt-string-l1-1-0.dll
- _wcsdup (Address: 0x18013b100)
- _wcsnicmp (Address: 0x18013b0f0)
- _wcsrev (Address: 0x18013b0e8)
- strncpy_s (Address: 0x18013b0d8)
- wcsncmp (Address: 0x18013b0d0)
- wcsncpy_s (Address: 0x18013b0e0)
- wcspbrk (Address: 0x18013b0f8)
api-ms-win-crt-time-l1-1-0.dll
- _localtime64_s (Address: 0x18013b168)
- _time64 (Address: 0x18013b170)
api-ms-win-crt-utility-l1-1-0.dll
- qsort (Address: 0x18013b1d0)
CRYPT32.dll
- CertCloseStore (Address: 0x18013a0b0)
- CertFindCertificateInStore (Address: 0x18013a0b8)
- CertFreeCertificateContext (Address: 0x18013a0c0)
- CertGetNameStringW (Address: 0x18013a0c8)
- CryptMsgClose (Address: 0x18013a0d8)
- CryptMsgGetParam (Address: 0x18013a0a8)
- CryptQueryObject (Address: 0x18013a0d0)
IPHLPAPI.DLL
- GetAdaptersAddresses (Address: 0x18013a140)
KERNEL32.dll
- AssignProcessToJobObject (Address: 0x18013a528)
- CancelIo (Address: 0x18013a290)
- CloseHandle (Address: 0x18013a260)
- ConnectNamedPipe (Address: 0x18013a428)
- CreateDirectoryW (Address: 0x18013a548)
- CreateEventW (Address: 0x18013a298)
- CreateFileA (Address: 0x18013a5b0)
- CreateFileW (Address: 0x18013a3f8)
- CreateHardLinkW (Address: 0x18013a578)
- CreateIoCompletionPort (Address: 0x18013a270)
- CreateJobObjectW (Address: 0x18013a520)
- CreateNamedPipeA (Address: 0x18013a470)
- CreateNamedPipeW (Address: 0x18013a440)
- CreateProcessW (Address: 0x18013a508)
- CreateSemaphoreW (Address: 0x18013a3c8)
- CreateToolhelp32Snapshot (Address: 0x18013a368)
- DeleteCriticalSection (Address: 0x18013a398)
- DeviceIoControl (Address: 0x18013a568)
- DuplicateHandle (Address: 0x18013a418)
- EnterCriticalSection (Address: 0x18013a2f8)
- FileTimeToSystemTime (Address: 0x18013a338)
- FillConsoleOutputAttribute (Address: 0x18013a4a8)
- FillConsoleOutputCharacterW (Address: 0x18013a4a0)
- FlushFileBuffers (Address: 0x18013a400)
- FormatMessageA (Address: 0x18013a540)
- GetConsoleCursorInfo (Address: 0x18013a4b0)
- GetConsoleMode (Address: 0x18013a388)
- GetConsoleScreenBufferInfo (Address: 0x18013a4c0)
- GetConsoleTitleW (Address: 0x18013a350)
- GetCurrentDirectoryW (Address: 0x18013a2d0)
- GetCurrentProcess (Address: 0x18013a310)
- GetCurrentProcessId (Address: 0x18013a250)
- GetCurrentThread (Address: 0x18013a460)
- GetCurrentThreadId (Address: 0x18013a1e8)
- GetEnvironmentVariableW (Address: 0x18013a2b8)
- GetExitCodeProcess (Address: 0x18013a500)
- GetFileAttributesW (Address: 0x18013a4f0)
- GetFileInformationByHandle (Address: 0x18013a550)
- GetFileType (Address: 0x18013a380)
- GetLastError (Address: 0x18013a238)
- GetLongPathNameW (Address: 0x18013a580)
- GetModuleFileNameW (Address: 0x18013a328)
- GetModuleHandleA (Address: 0x18013a598)
- GetModuleHandleW (Address: 0x18013a1a8)
- GetNamedPipeHandleStateW (Address: 0x18013a450)
- GetNumberOfConsoleInputEvents (Address: 0x18013a480)
- GetProcAddress (Address: 0x18013a5a0)
- GetProcessTimes (Address: 0x18013a308)
- GetQueuedCompletionStatus (Address: 0x18013a278)
- GetShortPathNameW (Address: 0x18013a588)
- GetStartupInfoW (Address: 0x18013a5b8)
- GetStdHandle (Address: 0x18013a5a8)
- GetSystemInfo (Address: 0x18013a320)
- GetSystemTimeAsFileTime (Address: 0x18013a1f0)
- GetTempPathW (Address: 0x18013a2d8)
- GetTickCount (Address: 0x18013a258)
- GlobalMemoryStatusEx (Address: 0x18013a318)
- InitializeCriticalSection (Address: 0x18013a2f0)
- InitializeCriticalSectionAndSpinCount (Address: 0x18013a1b8)
- InitializeSListHead (Address: 0x18013a210)
- InitOnceBeginInitialize (Address: 0x18013a1c8)
- InitOnceComplete (Address: 0x18013a1f8)
- IsDebuggerPresent (Address: 0x18013a1e0)
- IsProcessorFeaturePresent (Address: 0x18013a1d8)
- K32GetProcessMemoryInfo (Address: 0x18013a360)
- LCMapStringW (Address: 0x18013a538)
- LeaveCriticalSection (Address: 0x18013a300)
- LocalAlloc (Address: 0x18013a240)
- LocalFree (Address: 0x18013a248)
- MoveFileExW (Address: 0x18013a570)
- MultiByteToWideChar (Address: 0x18013a340)
- OpenProcess (Address: 0x18013a510)
- PeekNamedPipe (Address: 0x18013a438)
- PostQueuedCompletionStatus (Address: 0x18013a288)
- Process32FirstW (Address: 0x18013a370)
- Process32NextW (Address: 0x18013a378)
- QueryPerformanceCounter (Address: 0x18013a2e0)
- QueryPerformanceFrequency (Address: 0x18013a2e8)
- QueueUserWorkItem (Address: 0x18013a468)
- ReadConsoleInputW (Address: 0x18013a488)
- ReadConsoleW (Address: 0x18013a490)
- ReadDirectoryChangesW (Address: 0x18013a590)
- ReadFile (Address: 0x18013a408)
- RegisterWaitForSingleObject (Address: 0x18013a2a0)
- ReleaseSemaphore (Address: 0x18013a3b0)
- RemoveDirectoryW (Address: 0x18013a558)
- ResetEvent (Address: 0x18013a3a8)
- ResumeThread (Address: 0x18013a3d0)
- RtlCaptureContext (Address: 0x18013a1a0)
- RtlLookupFunctionEntry (Address: 0x18013a1c0)
- RtlVirtualUnwind (Address: 0x18013a1d0)
- SetConsoleCtrlHandler (Address: 0x18013a4e8)
- SetConsoleCursorInfo (Address: 0x18013a4b8)
- SetConsoleCursorPosition (Address: 0x18013a4c8)
- SetConsoleMode (Address: 0x18013a478)
- SetConsoleTextAttribute (Address: 0x18013a4d0)
- SetConsoleTitleW (Address: 0x18013a358)
- SetCurrentDirectoryW (Address: 0x18013a2c8)
- SetEnvironmentVariableW (Address: 0x18013a2c0)
- SetErrorMode (Address: 0x18013a268)
- SetEvent (Address: 0x18013a3a0)
- SetFileTime (Address: 0x18013a560)
- SetHandleInformation (Address: 0x18013a280)
- SetInformationJobObject (Address: 0x18013a530)
- SetLastError (Address: 0x18013a420)
- SetNamedPipeHandleState (Address: 0x18013a430)
- SetUnhandledExceptionFilter (Address: 0x18013a200)
- Sleep (Address: 0x18013a4e0)
- SwitchToThread (Address: 0x18013a458)
- TerminateProcess (Address: 0x18013a4f8)
- TlsAlloc (Address: 0x18013a3d8)
- TlsFree (Address: 0x18013a3f0)
- TlsGetValue (Address: 0x18013a3e0)
- TlsSetValue (Address: 0x18013a3e8)
- TryEnterCriticalSection (Address: 0x18013a390)
- UnhandledExceptionFilter (Address: 0x18013a208)
- UnregisterWait (Address: 0x18013a2a8)
- UnregisterWaitEx (Address: 0x18013a518)
- VerifyVersionInfoW (Address: 0x18013a330)
- VerSetConditionMask (Address: 0x18013a2b0)
- VirtualAlloc (Address: 0x18013a5c0)
- VirtualFree (Address: 0x18013a228)
- VirtualLock (Address: 0x18013a220)
- VirtualProtect (Address: 0x18013a230)
- VirtualUnlock (Address: 0x18013a218)
- WaitForMultipleObjects (Address: 0x18013a3c0)
- WaitForSingleObject (Address: 0x18013a3b8)
- WaitForSingleObjectEx (Address: 0x18013a1b0)
- WaitNamedPipeW (Address: 0x18013a448)
- WideCharToMultiByte (Address: 0x18013a348)
- WriteConsoleInputW (Address: 0x18013a4d8)
- WriteConsoleW (Address: 0x18013a498)
- WriteFile (Address: 0x18013a410)
MSVCP140.dll
- _Cnd_do_broadcast_at_thread_exit (Address: 0x18013a870)
- _Mbrtowc (Address: 0x18013a738)
- _Mtx_destroy_in_situ (Address: 0x18013a7c8)
- _Mtx_init_in_situ (Address: 0x18013a7c0)
- _Mtx_lock (Address: 0x18013a7d0)
- _Mtx_unlock (Address: 0x18013a7d8)
- _Query_perf_counter (Address: 0x18013a848)
- _Query_perf_frequency (Address: 0x18013a850)
- _Thrd_detach (Address: 0x18013a858)
- _Thrd_id (Address: 0x18013a868)
- _Thrd_sleep (Address: 0x18013a860)
- _Xtime_get_ticks (Address: 0x18013a840)
- ?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ (Address: 0x18013a828)
- ?_Getcvt@_Locinfo@std@@QEBA?AU_Cvtvec@@XZ (Address: 0x18013a740)
- ?_Incref@facet@locale@std@@UEAAXXZ (Address: 0x18013a830)
- ?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z (Address: 0x18013a808)
- ?_Locimp_Addfac@_Locimp@locale@std@@CAXPEAV123@PEAVfacet@23@_K@Z (Address: 0x18013a800)
- ?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ (Address: 0x18013a8e0)
- ?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z (Address: 0x18013a7f8)
- ?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ (Address: 0x18013a778)
- ?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ (Address: 0x18013a890)
- ?_Throw_C_error@std@@YAXH@Z (Address: 0x18013a7e0)
- ?_Throw_Cpp_error@std@@YAXH@Z (Address: 0x18013a878)
- ?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ (Address: 0x18013a8e8)
- ?_W_Getdays@_Locinfo@std@@QEBAPEBGXZ (Address: 0x18013a748)
- ?_W_Getmonths@_Locinfo@std@@QEBAPEBGXZ (Address: 0x18013a750)
- ?_Xbad_alloc@std@@YAXXZ (Address: 0x18013a720)
- ?_Xbad_function_call@std@@YAXXZ (Address: 0x18013a730)
- ?_Xlength_error@std@@YAXPEBD@Z (Address: 0x18013a728)
- ?_Xout_of_range@std@@YAXPEBD@Z (Address: 0x18013a7a0)
- ??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ (Address: 0x18013a8a8)
- ??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z (Address: 0x18013a6f8)
- ??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z (Address: 0x18013a8b0)
- ??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ (Address: 0x18013a880)
- ??0?$codecvt@_WDU_Mbstatet@@@std@@QEAA@_K@Z (Address: 0x18013a818)
- ??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ (Address: 0x18013a898)
- ??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ (Address: 0x18013a6f0)
- ??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ (Address: 0x18013a8b8)
- ??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ (Address: 0x18013a888)
- ??1?$codecvt@_WDU_Mbstatet@@@std@@MEAA@XZ (Address: 0x18013a820)
- ??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z (Address: 0x18013a7e8)
- ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_J@Z (Address: 0x18013a788)
- ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z (Address: 0x18013a7a8)
- ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_N@Z (Address: 0x18013a790)
- ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@F@Z (Address: 0x18013a700)
- ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z (Address: 0x18013a798)
- ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z (Address: 0x18013a8c8)
- ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z (Address: 0x18013a7b0)
- ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z (Address: 0x18013a8c0)
- ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEBX@Z (Address: 0x18013a7b8)
- ??Bid@locale@std@@QEAA_KXZ (Address: 0x18013a7f0)
- ?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ (Address: 0x18013a780)
- ?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A (Address: 0x18013a838)
- ?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z (Address: 0x18013a8f0)
- ?out@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEB_W1AEAPEB_WPEAD3AEAPEAD@Z (Address: 0x18013a810)
- ?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z (Address: 0x18013a8d0)
- ?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z (Address: 0x18013a8f8)
- ?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z (Address: 0x18013a770)
- ?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z (Address: 0x18013a8d8)
- ?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ (Address: 0x18013a900)
- ?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z (Address: 0x18013a760)
- ?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z (Address: 0x18013a708)
- ?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ (Address: 0x18013a908)
- ?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ (Address: 0x18013a768)
- ?uncaught_exception@std@@YA_NXZ (Address: 0x18013a758)
- ?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z (Address: 0x18013a8a0)
- ?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z (Address: 0x18013a718)
- ?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z (Address: 0x18013a710)
ole32.dll
- CoCreateGuid (Address: 0x18013b230)
USERENV.dll
- GetUserProfileDirectoryW (Address: 0x18013a9d0)
VCRUNTIME140_1.dll
- __CxxFrameHandler4 (Address: 0x18013ab30)
VCRUNTIME140.dll
- __C_specific_handler (Address: 0x18013aa48)
- __current_exception (Address: 0x18013aa40)
- __current_exception_context (Address: 0x18013aa38)
- __RTDynamicCast (Address: 0x18013aa68)
- __std_exception_copy (Address: 0x18013aab0)
- __std_exception_destroy (Address: 0x18013aab8)
- __std_terminate (Address: 0x18013aaa8)
- __std_type_info_destroy_list (Address: 0x18013aa30)
- _CxxThrowException (Address: 0x18013aa98)
- _purecall (Address: 0x18013aaa0)
- memchr (Address: 0x18013aa70)
- memcmp (Address: 0x18013aa80)
- memcpy (Address: 0x18013aa90)
- memmove (Address: 0x18013aa88)
- memset (Address: 0x18013aa78)
- strchr (Address: 0x18013aa60)
- wcschr (Address: 0x18013aa58)
- wcsrchr (Address: 0x18013aa50)
WINTRUST.dll
- WinVerifyTrust (Address: 0x18013ab90)
WS2_32.dll
- bind (Address: 0x18013ac80)
- closesocket (Address: 0x18013ac58)
- getpeername (Address: 0x18013ac90)
- getsockname (Address: 0x18013ac98)
- getsockopt (Address: 0x18013ac60)
- htonl (Address: 0x18013ac10)
- htons (Address: 0x18013ac78)
- ioctlsocket (Address: 0x18013ac88)
- listen (Address: 0x18013aca0)
- ntohs (Address: 0x18013ac50)
- select (Address: 0x18013ac38)
- setsockopt (Address: 0x18013ac68)
- shutdown (Address: 0x18013aca8)
- socket (Address: 0x18013ac40)
- WSADuplicateSocketW (Address: 0x18013ac08)
- WSAGetLastError (Address: 0x18013ac70)
- WSAIoctl (Address: 0x18013abf0)
- WSARecv (Address: 0x18013abf8)
- WSARecvFrom (Address: 0x18013ac18)
- WSASend (Address: 0x18013ac00)
- WSASendTo (Address: 0x18013ac20)
- WSASetLastError (Address: 0x18013ac28)
- WSASocketW (Address: 0x18013ac48)
- WSAStartup (Address: 0x18013ac30)