Gridinsoft Logo

The steam_api64.dll (Steam API) File Analysis

Updated 2 months ago
Checked by Malware Check
steam_api64.dll

Technical Analysis

File Name steam_api64.dll
File Type
Win32 DLL
Magic Bytes PE32+ executable (DLL) (GUI) x86-64, for MS Windows
SSDEEP Hash
24576:Ww2614GVyy+C0O0tpdgIgzvqr0jo3SZ0YyHo+1mKr01/6M+wugHMtW18/A:H26AC1wszvqIjsSZjyI+4Kr0HtuMMk1/
Scanner Version 1.0.228.174
Database Version 2025-11-09 14:00:28 UTC

Suspicious File Detected

Detected by 37 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
52%
Detection Rate
1,762,308
File Size (bytes)
37/71
Engines Detected
2025-11-09
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
a53e93f2463a6da8139a87ec2371579c
SHA1
23eae934537692473d19793f7a74bfa665df02e6
SHA256
ba916eb0431ca0fd038a979a8ade121e9374aaa8a17e3b2193191d0c3b035abc
SHA512
8ec8b077496e97a519c64953c174de64afed6c48783dca06b4c70483199c1405ebd2e9f05c49669cf49ea4268c7dd6b69b09a8cec3a4f52dd814b55f93c4f99f
ImpHash
64ed3fee447559811617087395cd7fbf

Security Engines with Detections (37 of 71)

Lionic
Trojan.Win32.Crack.4!c Malicious
Elastic
malicious (high confidence) Malicious
Cynet
Malicious (score: 100) Malicious
CAT-QuickHeal
Trojan.Agent Malicious
Skyhigh
BehavesLike.Win64.BackdoorAXJdll.tc Malicious
Cylance
Unsafe Malicious
Zillya
Tool.Crack.Win64.89 Malicious
CrowdStrike
win/grayware_confidence_100% (W) Malicious
K7GW
Trojan ( 7000001d1 ) Malicious
K7AntiVirus
Trojan ( 7000001d1 ) Malicious
Symantec
ML.Attribute.HighConfidence Malicious
ESET-NOD32
a variant of Win64/HackTool.Crack.F potentially unsafe Malicious
Paloalto
generic.ml Malicious
ClamAV
Win.Tool.Crack-10036428-0 Malicious
Emsisoft
Riskware.GameHack (A) Malicious
TrendMicro
PUA.Win64.GameCrack.AA Malicious
McAfeeD
ti!BA916EB0431C Malicious
Trapmine
malicious.moderate.ml.score Malicious
CTX
dll.trojan.crack Malicious
Sophos
Mal/Generic-R Malicious
Ikarus
PUA.HackTool.Crack Malicious
FireEye
Generic.mg.a53e93f2463a6da8 Malicious
Webroot
Riskware.Gamehack.Gen Malicious
Antiy-AVL
Trojan/Win32.BTSGeneric Malicious
Xcitium
ApplicUnwnt@#2dpivee735pps Malicious
GData
Win64.Application.Agent.7C5KZI Malicious
Google
Detected Malicious
McAfee
Crack-Reloaded Malicious
Panda
PUP/Crack Malicious
TrendMicro-HouseCall
PUA.Win64.GameCrack.AA Malicious
Rising
Trojan.Vagger!8.ED74 (CLOUD) Malicious
Yandex
Trojan.Igent.bUjPE9.15 Malicious
SentinelOne
Static AI - Suspicious PE Malicious
MaxSecure
Trojan.Malware.7164915.susgen Malicious
Fortinet
Riskware/Crack Malicious
DeepInstinct
MALICIOUS Malicious
alibabacloud
HackTool:Win/Crack.F Malicious
34 engines reported no threats - Only engines with detections are shown above for clarity

PE Analysis

Basic Information

Image Base 0x180000000
Entry Point 0x180046240
Compilation Time 2017-07-19 15:43:05
Checksum 0x00000000 (Actual: 0x001bc479)
OS Version 6.0
PEiD Signatures PE32+ executable (DLL) (GUI) x86-64, for MS Windows
Digital Signature No valid SignedData structure was found.
Imports 7 libraries
KERNEL32, USER32, GDI32, ADVAPI32, SHELL32, ole32, WINMM
Exports 911 functions
Resources 4 Resources
Sections 8 Sections

Version Information

CompanyName *!ReLOADeD!*
FileDescription Steam API
FileVersion 8,1,0,141
InternalName steam_api
LegalCopyright *!ReLOADeD!*
OriginalFilename steam_api
ProductName Steam API
ProductVersion 8,1,0,141
Translation 0x0409 0x04b0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 339,024 bytes 339,456 bytes 6.45 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 819E3822215A903F2D19248A98159F92
.rdata 0x00054000 160,120 bytes 160,256 bytes 5.34 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ FB2F86804DAC39396F39A3022344E360
.data 0x0007c000 240,728 bytes 4,608 bytes 3.53 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 9CBF9BD7DC8528167D07474C58C42EF0
.pdata 0x000b7000 25,392 bytes 25,600 bytes 5.73 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 923E07E2CF3AD01D600EF93D628E5FB5
.rsrc 0x000be000 117,984 bytes 118,272 bytes 5.67 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 790C3A373DCDCB9D1EC5341C63148D91
.RLD0 0x000db000 9,360 bytes 9,728 bytes 5.76 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 407D3685164C01269A962908C90B927B
.RLD1 0x000de000 1,091,720 bytes 1,092,096 bytes 7.89 (Packed/Encrypted) IMAGE_SCN_CNT_CODE|IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 869A39EFA12DF971D5814F944B8C882E
.reloc 0x001e9000 10,200 bytes 10,240 bytes 5.60 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 2A4279CA40EBB443E95E041B86EE1459
Entropy Analysis Alert

1 section(s) with high entropy (≥7.5) detected - possible packing/encryption

Resource Analysis

Total Resources: 4 (117,724 bytes)
Resource Type Count Total Size Percentage
RT_BITMAP 3 117,048 bytes
99.4%
RT_VERSION 1 676 bytes
0.6%

Certificate Chain Analysis

Certificate Information
Product Steam API
Description Steam API
File Version 8,1,0,141
Original Name steam_api
Internal Name steam_api
Copyright *!ReLOADeD!*

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
37 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Your Score for
/

Gridinsoft Anti-Malware

Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware

Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!

Gridinsoft Anti-Malware Download Now
Gridinsoft Anti-Malware