aclui.dll

  • File Path: C:\Windows\system32\aclui.dll
  • Description: Security Descriptor Editor

Hashes

Type Hash
MD5 F883E9CA757B622B032FDCA5BF33D0DF
SHA1 E4180ACF0664E1371563D11780897E90AE4B0A2A
SHA256 B8D30E658B0CA2E4C04F4677D6DBEEC9D782D45959E144E556CE679A20B337CB
SHA384 0AE362668AE521F57B693AA801D26467258CD233C11F66F53FA66B781BD710295E025306645F28EAEF2B34158B30F49A
SHA512 C1F05A5CEFA6E9CD4678C4931B7A67E7D86D3AB5375861B6415EE9B4279548907753A4F015EBEE973D0EB909731CB4238D908829A76961322EA8D5941FE37AB5
SSDEEP 12288:SkNJSC3EwoQ9Kp1UA3riVDOtydbdO/lxnR:ZnSCvApKgrYdbI/lxn
IMP D9947CA70A4B70147886D0F02997043E
PESHA1 9C9BACFDBE146DEB82DF8DDBCD7AE64CDD9FA845
PE256 0810ED8BF8270849FAE47CA139859867F7C82E41682ECC1CD8885F99030775BF

DLL Exports:

Function Name Ordinal Type
GetLocalizedStringForCondition 6 Exported Function
EditSecurityAdvanced 3 Exported Function
IID_ISecurityInformation 16 Exported Function
GetTlsIndexForClaimDictionary 7 Exported Function
EditConditionalAceClaims 5 Exported Function
CreateSecurityPage 1 Exported Function
EditSecurity 2 Exported Function
EditResourceCondition 4 Exported Function

Signature

  • Status: Signature verified.
  • Serial: 3300000266BD1580EFA75CD6D3000000000266
  • Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: aclui.dll.mui
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.19041.1 (WinBuild.160101.0800)
  • Product Version: 10.0.19041.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: 0/70
  • VirusTotal Link: https://www.virustotal.com/gui/file/b8d30e658b0ca2e4c04f4677d6dbeec9d782d45959e144e556ce679a20b337cb/detection/

Possible Misuse

The following table contains possible examples of aclui.dll being misused. While aclui.dll is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
malware-ioc nukesped_lazarus .aclui.dll``{:.highlight .language-cmhg} © ESET 2014-2018

MIT License. Copyright (c) 2020-2021 Strontic.