SteamAdminV2[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SteamAdminV2.exe
Size

8.6MB
MD5

4489d4027e1e63a6976934c816a4e6f8
SHA1

0b315496448291558372552cf13cabc77ccafd2b
SHA256

1632d42e46bd233664945560eb7bf28ec968587c6e2f0ec576ca8686faff1ef8
SHA512

df693f14d7506d20126990aec8fcc38c5ece04c2874f616cce8e9efbddbb484ef936cff1f9afee804b62a6b06a378fb39a4fdf87ffb0ce49c609e9cf571e3ced
SSDEEP

196608:qYvfv5zPaeoOwgjoLiwgoLF0YkKZPAPRQJN:qYvfv1PaoPOpkKZPAq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SteamAdminV2.exe

Files

SteamAdminV2.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8.4MB - Virtual size: 8.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 215KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ