d6a020acbcf01d0fb00b87af84fc91efdc01d03d1ea1cb9c2b0d1e07a970d557

Sharing

Copy URL

Twitter E-mail

General

Target

d6a020acbcf01d0fb00b87af84fc91efdc01d03d1ea1cb9c2b0d1e07a970d557
Size

968KB
MD5

6222aafb3bf6ebc93c7f30481ed2229d
SHA1

7ebedb188734a7dfcb6df91dde498315d5c6913b
SHA256

d6a020acbcf01d0fb00b87af84fc91efdc01d03d1ea1cb9c2b0d1e07a970d557
SHA512

840b614eb8704f6d2ee2f2a518cf4611ef4d9f23340c6fdf841f002c496da4f17f963d5f75fa5e540a86412a0fb15fb05f6732a7f2f6d1b17a09a38526d1ec72
SSDEEP

24576:eDhNIRZY3OZqozX+mc4zggkmTybm4A1AhAF0FQRJkeAAN6D7i6CdHqNKgoTJD9wu:teen0MI5UDfOm

Score

N/A

Malware Config

Signatures

Files

d6a020acbcf01d0fb00b87af84fc91efdc01d03d1ea1cb9c2b0d1e07a970d557
.dll windows x86

c0c358e2379be6db449d1c4e41e057fb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

steam_api

SteamAPI_RunCallbacks
SteamUser
SteamMatchmaking
SteamAPI_UnregisterCallback
SteamAPI_RegisterCallback
SteamFriends

steam

SteamFindServersNumServers
SteamFindServersIterateServer

wsock32

select
htons
shutdown
setsockopt
sendto
bind
recvfrom
__WSAFDIsSet
closesocket
getsockname
gethostbyname
ntohl
ntohs
inet_ntoa
socket

kernel32

FileTimeToSystemTime
SetUnhandledExceptionFilter
InterlockedExchange
GetStringTypeW
GetStringTypeA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetCPInfo
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
WriteFile
UnhandledExceptionFilter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
LCMapStringW
LCMapStringA
FreeLibrary
GetProcAddress
LoadLibraryA
GetModuleHandleA
WideCharToMultiByte
MultiByteToWideChar
VirtualQuery
HeapAlloc
GetProcessHeap
GetModuleFileNameA
WaitForSingleObject
SetEvent
InitializeCriticalSection
TerminateThread
Sleep
CreateEventA
LeaveCriticalSection
ExitThread
EnterCriticalSection
DeleteCriticalSection
CloseHandle
CreateThread
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoW
SetConsoleCtrlHandler
SetEndOfFile
IsBadCodePtr
IsBadWritePtr
FlushFileBuffers
SetStdHandle
CreateFileA
ReadFile
SetFilePointer
GetOEMCP
IsBadReadPtr
GetTimeFormatA
GetDateFormatA
GetSystemTimeAsFileTime
GetDriveTypeA
GetCurrentDirectoryA
GetFullPathNameA
FindClose
GetCurrentProcess
FileTimeToLocalFileTime
GetLastError
FindFirstFileA
FindNextFileA
GetCurrentThreadId
GetCommandLineA
GetVersionExA
ExitProcess
RtlUnwind
RaiseException
TlsAlloc
SetLastError
GetCurrentThread
TlsFree
TlsSetValue
TlsGetValue
GetTimeZoneInformation
VirtualProtect
VirtualAlloc
GetSystemInfo
FatalAppExitA
TerminateProcess
GetACP

tier0

Plat_FloatTime
Msg
?Lock@CThreadMutex@@QAEXXZ
?Lock@CThreadMutex@@QBEXXZ
_AssertValidReadPtr
ThreadSleep
g_pVCR
?DevMsg@@YAXPBDZZ
DevMsg
Warning
CommandLine_Tier0
Error
g_pMemAlloc
AssertValidStringPtr
_AssertValidWritePtr

vstdlib

RandomInt
GetCVarIF
RandomFloat
KeyValuesSystem

Exports

Exports

CreateInterface
JoiningSecureServerCall

Sections

.text
Size: 600KB - Virtual size: 598KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c0c358e2379be6db449d1c4e41e057fb

Headers

File Characteristics

Imports

steam_api

steam

wsock32

kernel32

tier0

vstdlib

Exports

Exports

Sections

.text Size: 600KB - Virtual size: 598KB

.rdata Size: 96KB - Virtual size: 95KB

.data Size: 12KB - Virtual size: 51KB

.reloc Size: 60KB - Virtual size: 59KB

.text Size: 196KB - Virtual size: 196KB

.text
Size: 600KB - Virtual size: 598KB

.rdata
Size: 96KB - Virtual size: 95KB

.data
Size: 12KB - Virtual size: 51KB

.reloc
Size: 60KB - Virtual size: 59KB

.text
Size: 196KB - Virtual size: 196KB