Gridinsoft Logo

The steam_api.dll (Steam API) File Analysis

Updated 1 month ago
Checked by Malaware Check
steam_api.dll

Technical Analysis

File Name steam_api.dll
File Type
Win32 DLL
Magic Bytes PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
SSDEEP Hash
12288:UAcIKnlQ/zN/Of6raDt3SrzASzLKGd40kyHxsCAZLDYe1d0unS:UFq/z5xzBLKGd4jCAZLDYezS
Scanner Version 1.0.214.174
Database Version 2025-04-17 20:00:19 UTC

Suspicious File Detected

Detected by 41 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
57%
Detection Rate
642,564
File Size (bytes)
41/72
Engines Detected
2025-04-17
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
85394d22815365c8c8690d98f0b9c462
SHA1
a0a4385aa89a40e9d4aa44d347a5f4fcf5ecd19e
SHA256
8bde6b35e5575ff9811e86d1c727446c1b870bcdd7491d61c01c311a90bab241
SHA512
aaae9dc3c461a1eff4b4fe4082d43a624bdaf1f1817724a884d42ca12d681ae3026249ad514d85e386f9ce33050bef5bbc0bf99d24d25588ef048d1b75ff7648
ImpHash
e533f117e969fe71c98d5755d99aaa72

Security Engines with Detections (41 of 72)

Bkav
W32.AIDetectMalware Malicious
Lionic
Hacktool.Win32.Crack.3!c Malicious
Elastic
malicious (high confidence) Malicious
CTX
dll.hacktool.crack Malicious
CAT-QuickHeal
PUA.HackTool.S398420 Malicious
Skyhigh
BehavesLike.Win32.Qakbot.jc Malicious
McAfee
GenericRXIK-EZ!85394D228153 Malicious
Cylance
Unsafe Malicious
Sangfor
Hacktool.Win32.Crack.V7cx Malicious
K7AntiVirus
Unwanted-Program ( 004e04b41 ) Malicious
K7GW
Unwanted-Program ( 004e04b41 ) Malicious
CrowdStrike
win/grayware_confidence_100% (W) Malicious
VirIT
HackTool.Win32.X-Gen.AHEE Malicious
Symantec
ML.Attribute.HighConfidence Malicious
ESET-NOD32
a variant of Win32/HackTool.Crack.CS potentially unsafe Malicious
TrendMicro-HouseCall
TROJ_SPNV.01A314 Malicious
Paloalto
generic.ml Malicious
ClamAV
Win.Tool.Gamehack-9886010-0 Malicious
Emsisoft
Application.GameHack (A) Malicious
TrendMicro
TROJ_SPNV.01A314 Malicious
McAfeeD
ti!8BDE6B35E557 Malicious
SentinelOne
Static AI - Suspicious PE Malicious
Trapmine
malicious.high.ml.score Malicious
Sophos
Steam (PUA) Malicious
Ikarus
PUA.HackTool.Steam Malicious
FireEye
Generic.mg.85394d22815365c8 Malicious
Webroot
Riskware.Gamehack.Gen Malicious
Google
Detected Malicious
Varist
W32/A-801cb0d7!Eldorado Malicious
Antiy-AVL
HackTool/Win32.Crack Malicious
Microsoft
HackTool:Win32/Crack!pz Malicious
Cynet
Malicious (score: 100) Malicious
AhnLab-V3
Trojan/Win32.Generic.C214973 Malicious
Malwarebytes
Crack.Trojan.HackTool.DDS Malicious
Panda
Trj/CI.A Malicious
Rising
Trojan.Occamy!8.F1CD (RDMK:cmRtazqIhv8lc85vnowFUVGeS5J9) Malicious
Yandex
PUP.Crack!wFl4BOyaBzE Malicious
MaxSecure
Trojan.Malware.6566574.susgen Malicious
Fortinet
W32/Trojan_FDCD.85394D228153!tr Malicious
DeepInstinct
MALICIOUS Malicious
alibabacloud
Tool:Win/Crack.886c7e42 Malicious
31 engines reported no threats - Only engines with detections are shown above for clarity

PE Analysis

Basic Information

Image Base 0x10000000
Entry Point 0x1001b34a
Compilation Time 2013-10-26 16:43:47
Checksum 0x00000000 (Actual: 0x000a8e20)
OS Version 6.0
PEiD Signatures PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
Digital Signature No valid SignedData structure was found.
Imports 5 libraries
KERNEL32, USER32, GDI32, ADVAPI32, SHELL32
Exports 58 functions
Resources 4 Resources
Sections 7 Sections

Version Information

CompanyName *!ReLOADeD!*
FileDescription Steam API
FileVersion 2,2,0,0
InternalName steam_api
LegalCopyright *!ReLOADeD!*
OriginalFilename steam_api
ProductName Steam API
ProductVersion 2,2,0,0
Translation 0x0409 0x04b0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 151,835 bytes 152,064 bytes 6.56 (Compressed) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 5E4D1B31B2C4346AC3C9F3C956D32554
.rdata 0x00027000 43,386 bytes 43,520 bytes 5.01 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ B62BA10563AF2534B2B590C41EABDD6A
.data 0x00032000 13,136 bytes 5,632 bytes 3.97 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE F751473BDC4D1F10B2B749AAD4A08FB7
.rsrc 0x00036000 117,976 bytes 118,272 bytes 5.67 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ ADD795E8CE2751B3486179CB03C77020
.RLD0 0x00053000 45,920 bytes 46,080 bytes 2.45 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ F09545932339A435F1D2F0F0546AAFB4
.RLD1 0x0005f000 262,770 bytes 263,168 bytes 7.79 (Packed/Encrypted) IMAGE_SCN_CNT_CODE|IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 859DD1755105A7900A07DDAAF838E59C
.reloc 0x000a0000 11,736 bytes 11,776 bytes 6.40 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ BE9CDE362016B82C816AF43C6594FCDF
Entropy Analysis Alert

1 section(s) with high entropy (≥7.5) detected - possible packing/encryption

1 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 4 (117,716 bytes)
Resource Type Count Total Size Percentage
RT_BITMAP 3 117,048 bytes
99.4%
RT_VERSION 1 668 bytes
0.6%

Certificate Chain Analysis

Certificate Information
Product Steam API
Description Steam API
File Version 2,2,0,0
Original Name steam_api
Internal Name steam_api
Copyright *!ReLOADeD!*

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
41 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware