Gridinsoft Logo

Discord_game_sdk.dll Malware Generic Analysis

Updated 13 days ago
Checked by Malware Check
discord_game_sdk.dll

Technical Analysis

File Name discord_game_sdk.dll
File Type
PE32+ executable (DLL) (console) x86-64, for MS Windows
Scanner Version 1.0.231.174
Database Version 2025-12-26 16:00:43 UTC

Malware.Win64.Generic.cld

Malware family: Generic

This detection name identifies suspicious files displaying Trojan-like behavior patterns. It represents malware that masquerades as benign programs while executing unauthorized activities on the infected system.
N/A
Detection Rate
18,179,584
File Size (bytes)
2025-12-26
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
59a764365247f5b207df003f2cc9a56a
SHA1
6c73fdb5256dc7d1a1953e86d34f32a1ec9ddaf2
SHA256
11a82098c7e1dc817ebf4992bbf22fbf5a7441fda36124984aeff3e6dd2723f8
SHA512
d494d403d1e1f17ac6c31223d720dc69fb079ce494be92a76abf4b4633639163892ce029e7f98b5c2e032d21faa4fcd63b5a2dbfe9fe99a1f681f3d93f59d17c
ImpHash
7ad6f65b2c6f1883f2ca34c4c9585e02

PE Analysis

Basic Information

Image Base 0x180000000
Entry Point 0x181b67058
Compilation Time 2025-05-22 17:37:32
Checksum 0x01157610 (Actual: 0x01157610)
OS Version 6.0
PEiD Signatures PE32+ executable (DLL) (console) x86-64, for MS Windows
Digital Signature No valid SignedData structure was found.
Imports 9 libraries
kernel32, ADVAPI32, MSVCP140, VCRUNTIME140_1, VCRUNTIME140, api-ms-win-crt-stdio-l1-1-0, api-ms-win-crt-runtime-l1-1-0, api-ms-win-crt-heap-l1-1-0, api-ms-win-crt-string-l1-1-0
Exports 1 functions
Resources 1 Resources
Sections 11 Sections

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
0x00001000 19,982 bytes 9,728 bytes 7.97 (Packed/Encrypted) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 4E1938091B91B625246D6FCE2E5F57BC
0x00006000 8,060 bytes 2,560 bytes 7.04 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ FF2C72E3C435397F80C1D770F5673430
0x00008000 2,456 bytes 512 bytes 7.38 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE B374EFB176A86E38C46A36EE27076780
0x00009000 1,020 bytes 512 bytes 6.95 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 1163F1571CF1ACB331E21B6D06CDDF70
0x0000a000 480 bytes 512 bytes 4.82 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ FD51A02C20DBC5B211166FE6ECAEBEAC
0x0000b000 80 bytes 512 bytes 1.97 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ E7F4595BB4A3155D01C571F3E56BF114
.edata 0x0000c000 4,096 bytes 512 bytes 0.93 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 35406215839CA72800F4DBA9C608C5B3
.idata 0x0000d000 4,096 bytes 1,024 bytes 2.98 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 730AD5795CFC06E2AC4EF2AB24D7C97F
.rsrc 0x0000e000 4,096 bytes 512 bytes 4.71 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 97228A84F14F8FF4742B07902699B933
.themida 0x0000f000 28,672,000 bytes 0 bytes 0.00 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE D41D8CD98F00B204E9800998ECF8427E
.boot 0x01b67000 18,162,176 bytes 18,162,176 bytes 7.97 (Packed/Encrypted) IMAGE_SCN_CNT_CODE|IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 8878FED89F3C0264409E35997FE8D09C
Entropy Analysis Alert

2 section(s) with high entropy (≥7.5) detected - possible packing/encryption

3 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 1 (381 bytes)
Resource Type Count Total Size Percentage
RT_MANIFEST 1 381 bytes
100%

Certificate Chain Analysis

No Digital Signatures

This file is not digitally signed.

Security Implications:
  • Cannot verify the publisher's identity
  • Increased security risk when running this file
  • May trigger security warnings on some systems

⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources

Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Malware.Win64.Generic.cld Removal

Gridinsoft has the capability to identify and eliminate Malware.Win64.Generic.cld without requiring further user intervention.

Download Anti-Malware

Removal Instructions

Follow these steps to completely remove the threat from your system

  1. Start by downloading Gridinsoft Anti-Malware to your computer.
  2. Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  3. Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  4. Click on the "Standard Scan" button to begin scanning your computer for threats.
  5. After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  6. If prompted, restart your system to complete the removal process and ensure all threats are eliminated.
Important: Before You Start
Disconnect from the internet to prevent the malware from spreading or downloading additional threats. Run the scan in Safe Mode for better detection and removal of persistent threats.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Your Score for
/

Gridinsoft Anti-Malware

Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware

Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!

Gridinsoft Anti-Malware Download Now
Gridinsoft Anti-Malware