steam_api[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

steam_api.dll
Size

243KB
MD5

4a0b9fc8904f0040cf13fcc4dcbb950c
SHA1

39e3cac8eba8a7d3c8ffe62a71366f36f34a1d60
SHA256

93b797b09d4054b35c78fbd44d5872b5910a45f5c48a089822fe44e21328b57b
SHA512

fe8b84baaf4f379cda39a8b1d72a2f2d4079520942ba3d81659bb71758c80e670683eeed383c5793720f6cfd4c0ebb252c74e65457a9b1a65eb13b59510a47ef
SSDEEP

6144:/94TGosKdtY91Bt8ZmFEGJaYYUdxhD71Ir9W2z68V:/gGE7YjBtEiYYYUdNiv

Score

7^/10

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
sample	acprotect

Files

steam_api.dll
.dll windows x86

Code Sign

47:3d:2a:78:61:ad:04:bd:4c:92:c8:c2:df:e0:90:ad
Certificate

Issuer

CN=WUS!

Not Before

30/06/2014, 22:00

Not After

31/12/2087, 22:00

Subject

CN=WUS!

a1:0b:2e:df:36:15:8d:a8:61:bd:d0:08:f0:f6:27:0d:48:da:2d:18
Signer

Actual PE Digest

a1:0b:2e:df:36:15:8d:a8:61:bd:d0:08:f0:f6:27:0d:48:da:2d:18

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

Breakpad_SteamMiniDumpInit
Breakpad_SteamSetAppID
Breakpad_SteamSetSteamID
Breakpad_SteamWriteMiniDumpSetComment
Breakpad_SteamWriteMiniDumpUsingExceptionInfoWithBuildId
CreateInterface
GetHSteamPipe
GetHSteamUser
OPENSSL_Applink
SteamAPI_GetHSteamPipe
SteamAPI_GetHSteamUser
SteamAPI_GetSteamInstallPath
SteamAPI_Init
SteamAPI_InitSafe
SteamAPI_IsSteamRunning
SteamAPI_RegisterCallResult
SteamAPI_RegisterCallback
SteamAPI_RestartApp
SteamAPI_RestartAppIfNecessary
SteamAPI_RunCallbacks
SteamAPI_SetBreakpadAppID
SteamAPI_SetMiniDumpComment
SteamAPI_SetTryCatchCallbacks
SteamAPI_Shutdown
SteamAPI_UnregisterCallResult
SteamAPI_UnregisterCallback
SteamAPI_UseBreakpadCrashHandler
SteamAPI_WriteMiniDump
SteamAppList
SteamApps
SteamClient
SteamContentServer
SteamContentServerUtils
SteamContentServer_Init
SteamContentServer_RunCallbacks
SteamContentServer_Shutdown
SteamController
SteamEncryptedAppTicket_BDecryptTicket
SteamEncryptedAppTicket_BIsTicketForApp
SteamEncryptedAppTicket_BUserIsVacBanned
SteamEncryptedAppTicket_BUserOwnsAppInTicket
SteamEncryptedAppTicket_GetTicketAppID
SteamEncryptedAppTicket_GetTicketIssueTime
SteamEncryptedAppTicket_GetTicketSteamID
SteamEncryptedAppTicket_GetUserVariableData
SteamFriends
SteamGameServer
SteamGameServerHTTP
SteamGameServerNetworking
SteamGameServerStats
SteamGameServerUtils
SteamGameServer_BSecure
SteamGameServer_GetHSteamPipe
SteamGameServer_GetHSteamUser
SteamGameServer_GetIPCCallCount
SteamGameServer_GetSteamID
SteamGameServer_Init
SteamGameServer_InitSafe
SteamGameServer_RunCallbacks
SteamGameServer_Shutdown
SteamHTMLSurface
SteamHTTP
SteamInventory
SteamMasterServerUpdater
SteamMatchmaking
SteamMatchmakingServers
SteamMusic
SteamMusicRemote
SteamNetworking
SteamNetworkingUpdater
SteamRemoteStorage
SteamScreenshots
SteamUGC
SteamUnifiedMessages
SteamUser
SteamUserStats
SteamUtils
SteamVideo
Steam_BConnected
Steam_BGetCallback
Steam_BLoggedOn
Steam_BReleaseSteamPipe
Steam_ConnectToGlobalUser
Steam_CreateLocalUser
Steam_CreateSteamPipe
Steam_FreeLastCallback
Steam_GSBLoggedOn
Steam_GSBSecure
Steam_GSGetSteam2GetEncryptionKeyToSendToNewClient
Steam_GSGetSteamID
Steam_GSLogOff
Steam_GSLogOn
Steam_GSRemoveUserConnect
Steam_GSSendSteam3UserConnect
Steam_GSSendUserDisconnect
Steam_GSSendUserStatusResponse
Steam_GSSetServerType
Steam_GSSetSpawnCount
Steam_GSUpdateStatus
Steam_GetAPICallResult
Steam_GetGSHandle
Steam_GetHSteamUserCurrent
Steam_InitiateGameConnection
Steam_LogOff
Steam_LogOn
Steam_RegisterInterfaceFuncs
Steam_ReleaseUser
Steam_RunCallbacks
Steam_SetLocalIPBinding
Steam_TerminateGameConnection
VR_GetGenericInterface
VR_GetStringForHmdError
VR_Init
VR_IsHmdPresent
VR_Shutdown
g_pSteamClientGameServer

Sections

WUS0
Size: - Virtual size: 436KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WUS1
Size: 234KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Code Sign

47:3d:2a:78:61:ad:04:bd:4c:92:c8:c2:df:e0:90:adCertificate

a1:0b:2e:df:36:15:8d:a8:61:bd:d0:08:f0:f6:27:0d:48:da:2d:18Signer

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

WUS0 Size: - Virtual size: 436KB

WUS1 Size: 234KB - Virtual size: 236KB

.rsrc Size: 6KB - Virtual size: 8KB

47:3d:2a:78:61:ad:04:bd:4c:92:c8:c2:df:e0:90:ad
Certificate

a1:0b:2e:df:36:15:8d:a8:61:bd:d0:08:f0:f6:27:0d:48:da:2d:18
Signer

WUS0
Size: - Virtual size: 436KB

WUS1
Size: 234KB - Virtual size: 236KB

.rsrc
Size: 6KB - Virtual size: 8KB