t:\ace\x86\ship\0\acerclr.pdb
Static task
static1
Behavioral task
behavioral1
Sample
534dbfd334cca9dbcdfe2294abbea510N.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
534dbfd334cca9dbcdfe2294abbea510N.dll
Resource
win10v2004-20240709-en
General
-
Target
534dbfd334cca9dbcdfe2294abbea510N.exe
-
Size
276KB
-
MD5
534dbfd334cca9dbcdfe2294abbea510
-
SHA1
5b7d823050312840926a7d8315aad480cae92021
-
SHA256
f2ccadfc49826e903ec34ed2ecfe3f67c9ab95ecea30f9251ab4c1e5de012ca6
-
SHA512
e0418084b83766e50fa19b277f0c12fac2c7e18e6a5e864c2e6a531a97ada0737e1b72eea977c6b6731ca7e691bee55a75b39a171fb876a5e224705c6b72f1d4
-
SSDEEP
6144:XSzgLOPNvFLz/tLM2Uj91nLOFJe2dBcQeXoKMWdpk8NyQ3urX:XSzhvJz/x1UB1ni22dBFFKMSa8Ny
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 534dbfd334cca9dbcdfe2294abbea510N.exe
Files
-
534dbfd334cca9dbcdfe2294abbea510N.exe.dll windows:4 windows x86 arch:x86
f9d6e95018ada0253359d330757079c5
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
ole32
CreateBindCtx
CoGetMalloc
StringFromGUID2
gdi32
GetDeviceCaps
msvcr80
malloc
memset
wcsrchr
free
_wsplitpath_s
_stricmp
_encode_pointer
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_crt_debugger_hook
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_decode_pointer
_encoded_null
_malloc_crt
swprintf_s
acerep
ord2041
ord2042
ord2052
ord2024
ord2001
vbajet32
ord1
advapi32
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
kernel32
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
VirtualProtect
LoadLibraryA
GetSystemDirectoryW
LoadLibraryW
GetProcessHeap
GetCurrentProcessId
GetModuleHandleW
ExpandEnvironmentStringsW
FindFirstFileW
GetFileAttributesW
InterlockedExchange
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
IsDebuggerPresent
LocalAlloc
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetModuleFileNameW
GetVersionExA
DisableThreadLibraryCalls
FreeLibrary
GetLastError
Sleep
FormatMessageA
FindClose
CloseHandle
GetProcAddress
CreateMutexA
WaitForSingleObject
ReleaseMutex
LockResource
LoadResource
FindResourceA
GetVersion
WideCharToMultiByte
MultiByteToWideChar
RaiseException
LoadLibraryExW
CreateFileW
DeleteFileW
CopyFileW
user32
GetClientRect
DrawTextA
GetDlgCtrlID
SetFocus
SendMessageA
EnableWindow
WinHelpW
MoveWindow
MapDialogRect
MessageBoxA
LoadStringA
WinHelpA
GetParent
SetDlgItemTextA
SetWindowTextA
SetWindowLongA
EndDialog
GetWindowLongA
SendDlgItemMessageA
GetWindowTextA
GetDlgItem
DialogBoxIndirectParamA
SetWindowPos
ReleaseDC
GetWindowRect
GetDC
ScreenToClient
version
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
Exports
Exports
DllCanUnloadNow
DllGetClassObject
Sections
.text Size: 32KB - Virtual size: 30KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 232KB - Virtual size: 232KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ