General

  • Target

    ac95a474db0595237da1503511bf8d7c

  • Size

    4.0MB

  • MD5

    ac95a474db0595237da1503511bf8d7c

  • SHA1

    b2df4ac5d59384fdbf9460ce4a7bf7782cc88b81

  • SHA256

    8e69a5ef3d94f6836b92915fec004e0320e0fde9fc863f9cdb475d04e52a5cce

  • SHA512

    5d0a00ab2c9fb0e3eb4d390ebb2109816e60e49059221217ced15140863e92ed966cb8aaf84e6fa59193af1a0d42b81ca27d44377517be568e8b89ca5c0f2d00

  • SSDEEP

    98304:lzgwLTVZtF8K9LOLa/G1y+9rKhURsm3oKLBlHIEuNQJgFL:lznVZtF8uLO22y6OCRs8RB1kQgV

Score
3/10

Malware Config

Signatures

  • Unsigned PE 8 IoCs

    Checks for missing Authenticode signature.

Files

  • ac95a474db0595237da1503511bf8d7c
    .rar
  • ali213.bin
  • gameoverlayrenderer.dll
    .dll windows:6 windows x86 arch:x86

    7912f226b75de90f8902caf23f9b5f3c


    Headers

    Imports

    Exports

    Sections

  • gameoverlayrenderer64.dll
    .dll windows:6 windows x64 arch:x64

    814b826418fb27134205ab13a4828738


    Headers

    Imports

    Exports

    Sections

  • sdkencryptedappticket.dll
    .dll windows:6 windows x86 arch:x86

    8d7fcad5827e6feff933cca9f77efafa


    Headers

    Imports

    Exports

    Sections

  • sdkencryptedappticket64.dll
    .dll windows:6 windows x64 arch:x64

    2d38feed21e09bc0b73cc31d087e5f82


    Headers

    Imports

    Exports

    Sections

  • steam000.wow
    .dll windows:5 windows x64 arch:x64

    343988fc32abb783b2370ac957fc3406


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • steam001.wow
    .dll windows:5 windows x86 arch:x86

    54e16aab412f2a5af4e6e953b524dcde


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • steam_api.dll
    .dll windows:5 windows x86 arch:x86

    8bc2b2a627fa08bac5386b42bf778fde


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • steam_api.ini
  • steam_api64.dll
    .dll windows:5 windows x64 arch:x64

    7b2c5360f7884e22ba8a1d4793c13a01


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • steam_api64r.dll
    .dll windows:6 windows x64 arch:x64

    e1cef8344630b832047d90735f6942e4


    Headers

    Imports

    Exports

    Sections

  • steam_apir.dll
    .dll windows:6 windows x86 arch:x86

    7f06844fca0bdcd6570b20be1ae38b61


    Headers

    Imports

    Exports

    Sections

  • steamclient.dll
    .dll windows:6 windows x86 arch:x86

    8d7fcad5827e6feff933cca9f77efafa


    Headers

    Imports

    Exports

    Sections

  • steamclient64.dll
    .dll windows:6 windows x64 arch:x64

    2d38feed21e09bc0b73cc31d087e5f82


    Headers

    Imports

    Exports

    Sections

  • 开始游戏.exe
    .exe windows:4 windows x86 arch:x86

    b90eea811d21ff2e6884ff0e58cc2183


    Code Sign

    Headers

    Imports

    Sections