Gridinsoft Logo
File Icon

The steamcommunity_302.exe (Steamcommunity 302) File Analysis

Technical Analysis

File Name steamcommunity_302.exe
File Type
Win32 EXE
Magic Bytes PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
SSDEEP Hash
6144:ctyOVN2wfmv6l4+AN3TbNajWU4m/pfNw025f3cqU4rYpiO9ZEt7G5+B9xtZYzoxJ:cUO/c6BAJWJ4ApfG0bdpiO0TxtuzO
Scanner Version 1.0.170.174
Database Version 2024-03-30 01:00:28 UTC

Suspicious File Detected

Detected by 46 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
64%
Detection Rate
489,472
File Size (bytes)
46/72
Engines Detected
2024-03-30
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
0b72e7b0a8bbf067c2c15a8c1a2a7b46
SHA1
62c0c38f6519440a12e1f255aa7fed9ca087ca6e
SHA256
063c60f74563e9cf35e509aa08b78d7d92ea7a59e29574908e3b3e84ab564b98
SHA512
c46816ac1e69fbc0ccb86e2e23924c0bd9706f600edf8461cce3b4f1a8ebcdb8850e5b68d54687ee7754fe9491697805e238fa05fa4e092eaf3624e1fc655d05
ImpHash
186181567a2843130cb6bc2088563c1b

Security Engines with Detections (46 of 72)

Bkav
W32.Common.D3BD73A1 Malicious
Lionic
Trojan.Win32.FlyStudio.4!c Malicious
Elastic
malicious (moderate confidence) Malicious
MicroWorld-eScan
Trojan.Generic.35356484 Malicious
FireEye
Generic.mg.0b72e7b0a8bbf067 Malicious
CAT-QuickHeal
Risktool.Flystudio.16882 Malicious
Skyhigh
BehavesLike.Win32.Generic.gc Malicious
ALYac
Trojan.Generic.35356484 Malicious
Malwarebytes
Generic.Malware.AI.DDS Malicious
Sangfor
Trojan.Win32.Save.a Malicious
Alibaba
Trojan:Win32/Malgent.1595f728 Malicious
CrowdStrike
win/malicious_confidence_60% (W) Malicious
BitDefenderTheta
Gen:NN.ZexaE.36802.DmKfaK3LQknb Malicious
Symantec
ML.Attribute.HighConfidence Malicious
ESET-NOD32
a variant of Win32/Packed.FlyStudio.AA potentially unwanted Malicious
APEX
Malicious Malicious
TrendMicro-HouseCall
TROJ_GEN.R002C0DCI24 Malicious
BitDefender
Trojan.Generic.35356484 Malicious
Avast
Win32:Evo-gen [Trj] Malicious
Sophos
Generic Reputation PUA (PUA) Malicious
F-Secure
Trojan.TR/Redcap.udreu Malicious
VIPRE
Trojan.Generic.35356484 Malicious
TrendMicro
TROJ_GEN.R002C0DCI24 Malicious
Trapmine
malicious.moderate.ml.score Malicious
Emsisoft
Trojan.Generic.35356484 (B) Malicious
Ikarus
Trojan.Crypt Malicious
Google
Detected Malicious
Avira
TR/Redcap.udreu Malicious
Antiy-AVL
Trojan[Packed]/Win32.FlyStudio Malicious
Microsoft
Trojan:Win32/Malgent!MSR Malicious
Arcabit
Trojan.Generic.D21B7F44 Malicious
ViRobot
Trojan.Win.Z.Wacatac.489472 Malicious
GData
Win32.Trojan.PSE.10V60DG Malicious
Cynet
Malicious (score: 100) Malicious
AhnLab-V3
Trojan/Win.Generic.C5569161 Malicious
McAfee
Artemis!0B72E7B0A8BB Malicious
MAX
malware (ai score=84) Malicious
Cylance
unsafe Malicious
Rising
Trojan.Malgent!8.10C33 (CLOUD) Malicious
Yandex
Trojan.GenAsa!tXL2U6oM+cg Malicious
SentinelOne
Static AI - Malicious PE Malicious
MaxSecure
Trojan.Malware.10228209.susgen Malicious
Fortinet
Riskware/Application Malicious
AVG
Win32:Evo-gen [Trj] Malicious
DeepInstinct
MALICIOUS Malicious
alibabacloud
Trojan:Win/Malgent Malicious
26 engines reported no threats - Only engines with detections are shown above for clarity

PE Analysis

Basic Information

Icon
Hash: 7dcebcb67167e5dc286a43251f7a7b6c
Fuzzy: 7ed05bf6ac0bf7706adc70b4e9afd990
dHash: 936d69e8cc687107
Image Base 0x00400000
Entry Point 0x00581b20
Compilation Time 2024-03-05 08:35:23
Checksum 0x00000000 (Actual: 0x0007b85b)
OS Version 5.1
PEiD Signatures PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
Digital Signature The PE file does not contain a certificate table.
Imports 12 libraries
Exports 0 functions
Resources 15 Resources
Sections 3 Sections

Version Information

FileVersion 12.1.36.0
FileDescription Steamcommunity 302
ProductName Steamcommunity 302
ProductVersion 12.1.36.0
CompanyName Dogfight360
LegalCopyright Dogfight360
Comments Steamcommunity 302
Translation 0x0804 0x04b0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
UPX0 0x00001000 1,134,592 bytes 0 bytes 0.00 (Normal) IMAGE_SCN_CNT_UNINITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE D41D8CD98F00B204E9800998ECF8427E
UPX1 0x00116000 442,368 bytes 441,856 bytes 7.93 (Packed/Encrypted) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE E499A6C8321B1158BC02B2406E41E818
.rsrc 0x00182000 49,152 bytes 46,592 bytes 6.56 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 57DCBCFED78BE5EC3948C2B166C8051D
Entropy Analysis Alert

1 section(s) with high entropy (≥7.5) detected - possible packing/encryption

1 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 15 (44,915 bytes)
Resource Type Count Total Size Percentage
RT_CURSOR 1 308 bytes
0.7%
RT_ICON 10 43,319 bytes
96.4%
RT_GROUP_CURSOR 1 20 bytes
0%
RT_GROUP_ICON 1 146 bytes
0.3%
RT_VERSION 1 660 bytes
1.5%
RT_MANIFEST 1 462 bytes
1%

Certificate Chain Analysis

Certificate Information
Product Steamcommunity 302
Description Steamcommunity 302
File Version 12.1.36.0
Copyright Dogfight360

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

The PE file does not contain a certificate table.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
46 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Gridinsoft Anti-Malware