steam_api[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

steam_api.dll
Size

249KB
MD5

c40d47b81e74f8fdb0725c3cbe5e2f74
SHA1

e320685cb8f093dc207c151a35491b22a2610a7c
SHA256

c0c2e36ea9cafd2d5701f931600b3d4866026895d6e04e4d1362ce5fd8853560
SHA512

a676a7a92a901f4e8e653b7d1efadc6d2d16ae7ebca1dd96c6572198cb25be5cea078448deb82601aa3b1800bc354989e80a2cdf5cb1b9b7f4061549d0db5908
SSDEEP

6144:ZwQea8f944snf3AiRVQk9F5gwr5S7+J8unR5u4y:LN81Nsf3Aisk1Hrg+J8Ey

Score

7^/10

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
sample	acprotect

Files

steam_api.dll
.dll windows x86

Code Sign

76:71:2f:d9:73:8d:a7:68:bd:06:aa:f4:01:8c:31:d9
Certificate

Issuer

CN=WUS!

Not Before

30/06/2014, 22:00

Not After

31/12/2087, 22:00

Subject

CN=WUS!

6c:97:82:ed:aa:37:36:45:48:f7:08:e9:ed:c6:2d:8f:45:c7:f2:f9
Signer

Actual PE Digest

6c:97:82:ed:aa:37:36:45:48:f7:08:e9:ed:c6:2d:8f:45:c7:f2:f9

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=WUS!

07/02/2023, 20:48
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

GetHSteamPipe
GetHSteamUser
SteamAPI_GetHSteamPipe
SteamAPI_GetHSteamUser
SteamAPI_GetSteamInstallPath
SteamAPI_Init
SteamAPI_InitSafe
SteamAPI_IsSteamRunning
SteamAPI_RegisterCallResult
SteamAPI_RegisterCallback
SteamAPI_ReleaseCurrentThreadMemory
SteamAPI_RestartApp
SteamAPI_RestartAppIfNecessary
SteamAPI_RunCallbacks
SteamAPI_SetBreakpadAppID
SteamAPI_SetMiniDumpComment
SteamAPI_SetTryCatchCallbacks
SteamAPI_Shutdown
SteamAPI_UnregisterCallResult
SteamAPI_UnregisterCallback
SteamAPI_UseBreakpadCrashHandler
SteamAPI_WriteMiniDump
SteamAppList
SteamApps
SteamClient
SteamContentServer
SteamContentServerUtils
SteamContentServer_Init
SteamContentServer_RunCallbacks
SteamContentServer_Shutdown
SteamController
SteamEncryptedAppTicket_BDecryptTicket
SteamEncryptedAppTicket_BIsTicketForApp
SteamEncryptedAppTicket_BUserIsVacBanned
SteamEncryptedAppTicket_BUserOwnsAppInTicket
SteamEncryptedAppTicket_GetTicketAppID
SteamEncryptedAppTicket_GetTicketIssueTime
SteamEncryptedAppTicket_GetTicketSteamID
SteamEncryptedAppTicket_GetUserVariableData
SteamFriends
SteamGameServer
SteamGameServerHTTP
SteamGameServerInventory
SteamGameServerNetworking
SteamGameServerStats
SteamGameServerUGC
SteamGameServerUtils
SteamGameServer_BSecure
SteamGameServer_GetHSteamPipe
SteamGameServer_GetHSteamUser
SteamGameServer_GetIPCCallCount
SteamGameServer_GetSteamID
SteamGameServer_Init
SteamGameServer_InitSafe
SteamGameServer_RunCallbacks
SteamGameServer_Shutdown
SteamHTMLSurface
SteamHTTP
SteamInternal_CreateInterface
SteamInternal_GameServer_Init
SteamInternal_GlobalContextGameServerPtr
SteamInternal_Init
SteamInventory
SteamMasterServerUpdater
SteamMatchmaking
SteamMatchmakingServers
SteamMusic
SteamMusicRemote
SteamNetworking
SteamNetworkingUpdater
SteamRemoteStorage
SteamScreenshots
SteamUGC
SteamUnifiedMessages
SteamUser
SteamUserStats
SteamUtils
SteamVideo
Steam_GetHSteamUserCurrent
Steam_RegisterInterfaceFuncs
Steam_RunCallbacks
VR_GetGenericInterface
VR_GetStringForHmdError
VR_Init
VR_IsHmdPresent
VR_Shutdown
g_pSteamClientGameServer

Sections

WUS0
Size: - Virtual size: 448KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WUS1
Size: 241KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Code Sign

76:71:2f:d9:73:8d:a7:68:bd:06:aa:f4:01:8c:31:d9Certificate

6c:97:82:ed:aa:37:36:45:48:f7:08:e9:ed:c6:2d:8f:45:c7:f2:f9Signer

Signature Validations

Verification

07/02/2023, 20:48 Valid: false

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

WUS0 Size: - Virtual size: 448KB

WUS1 Size: 241KB - Virtual size: 244KB

.rsrc Size: 5KB - Virtual size: 8KB

76:71:2f:d9:73:8d:a7:68:bd:06:aa:f4:01:8c:31:d9
Certificate

6c:97:82:ed:aa:37:36:45:48:f7:08:e9:ed:c6:2d:8f:45:c7:f2:f9
Signer

07/02/2023, 20:48
Valid: false

WUS0
Size: - Virtual size: 448KB

WUS1
Size: 241KB - Virtual size: 244KB

.rsrc
Size: 5KB - Virtual size: 8KB