Overview

overview

3

Static

static

3

steam_api.dll

windows7-x64

1

steam_api.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    32s
  • max time network
    35s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-08-2023 19:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    steam_api.dll

  • Size

    807KB

  • MD5

    bdb69352046c5021c5226fec74bea252

  • SHA1

    e42b049112787e18fd126c51f1984bbbec586e4d

  • SHA256

    d2f3a7cc98ef6c6ed268c66cd6d82f91377a57ac67733f22681cbaded4a60bd3

  • SHA512

    8352fd7f4864c401e1def1e9c69b9e5cea403783f30d5517aee1a56821e091693ef569d5a9d40d3c88b356d1842592ea9a61879bd72a6c55ede506ab9eb43ce4

  • SSDEEP

    12288:6kqKmpLnAfyElBV+mt3Sm1zFBCHfkM6fPiGgME/Xy2w0EfFF/OLvcvilT4YO:6LLnAfyCl11fPiGgZC2EfXu9lT4YO

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\steam_api.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:4432
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\steam_api.dll,#1
      2⤵
        PID:3380

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads