Report Overview
Visitedpublic
2025-01-12 03:52:41
Tags
Submit Tags
URL
github.com/BigBoiCJ/SteamAutoCracker/releases/download/2.2.1-gui/Steam.Auto.Cracker.GUI.v2.2.1.zip
Finishing URL
about:privatebrowsing
IP / ASN
140.82.121.4
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
github.com | 1423 | 2007-10-09 | 2016-07-13 | 2025-01-08 | 552 B | 4.4 kB | 140.82.121.3 | |
objects.githubusercontent.com 1 alert(s) on this Host | 134060 | 2014-02-06 | 2021-11-01 | 2025-01-08 | 976 B | 17 MB |  185.199.111.133 |
Related reports
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
objects.githubusercontent.com/github-production-release-asset-2e65be/469296549/bc01d8bb-7990-4a17-b24f-16598d30abd1?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20250112%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250112T035211Z&X-Amz-Expires=300&X-Amz-Signature=2f37eb6e7715c6a91a408d6a1c2e4f7ada97dc3beeb49f9ffe0c9b4ee1eea4f0&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3DSteam.Auto.Cracker.GUI.v2.2.1.zip&response-content-type=application%2Foctet-stream
IP / ASN
185.199.111.133
File Overview
File TypeZip archive data, at least v1.0 to extract, compression method=store
Size17 MB (17332829 bytes)
MD593dd0c79faaa39c57d67aa07aed48c24
SHA165490baf70f3cd3375a161556dc908aaa683c085
Archive (28)
| Filename | MD5 | File type |
|---|---|---|
| config_override.ini | b13418bdb6bd765d8df42deb52730404 | ASCII text, with CRLF line terminators |
| cream_api.ini | edc03fb164d3b2eb45e3d374d5293767 | ASCII text, with CRLF line terminators |
| steam_api.dll | 24c712826d939f5cec9049d4b94fcbdb | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections |
| steam_api64.dll | 1b14c913c0df41cc0667993d9b37404d | PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections |
| infos.txt | 014a98492340e8dad263630ccb0c35c7 | ASCII text, with CRLF line terminators |
| SteamConfig.ini | 84a9ae246e1c2daf2bf2ddd6f5dae7b8 | Generic INItialization configuration [DLC] |
| steam_api.dll | 7e890387f073f1d7af5d28d6b6a26dbb | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections |
| steam_api64.dll | 99a2cf782112b5ea29cb18674ca3182d | PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 8 sections |
| infos.txt | e9d54c30467ef13cb50f424e6886a72c | ASCII text, with CRLF line terminators |
| steam_api.dll | d6e749904e8116946c3734f496602bb1 | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 8 sections |
| steam_api64.dll | 77f259bc5affc9d59958d2e35d946830 | PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 9 sections |
| DLC.txt | ab4555b5fa14e6d6782fccafadfa6795 | ASCII text, with no line terminators |
| steam_appid.txt | 555b6846d647c5170b231b580d0f49a0 | ASCII text, with no line terminators |
| infos.txt | 38b421e420930f70245c01b1711b3a3b | ASCII text, with CRLF line terminators |
| infos.txt | 85374f62d6b65bcd3e5b078d3bbde213 | ASCII text, with CRLF line terminators |
| ExamplePlugin.dll | dbfe069390646f3402b21f28005f3156 | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| SharpDisasm.dll | 0f900d9190603d646009ec3523fa43cc | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| Steamless.API.dll | c347632a60da1519c48ff043831ca7df | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| Steamless.Unpacker.Variant10.x86.dll | 31f399ccb6bf807bf07ec3ac264d930d | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| Steamless.Unpacker.Variant20.x86.dll | a058bf89c78880d7ca66c6513ba37a8f | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| Steamless.Unpacker.Variant21.x86.dll | 2144889fddfdeb1fa2cf4f18b611581c | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| Steamless.Unpacker.Variant30.x64.dll | 956eebdbafff1a5abb3eb9690f292165 | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| Steamless.Unpacker.Variant30.x86.dll | 2a32a106e85dfdf75095d034b30b752a | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| Steamless.Unpacker.Variant31.x64.dll | 8cef9d57f82ed85f390ccd387e21e5a0 | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| Steamless.Unpacker.Variant31.x86.dll | 2c7a10fb35202e73632b2637426d9d1b | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| Steamless.CLI.exe | 2a2f85ca57b8ffc8daf586c1773a1e56 | PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| Steamless.CLI.exe.config | ef0181de18ef3951806c0ad63b897ba4 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators |
| steam_auto_cracker_gui.exe | 9b13d23586bc94a9a03a74c703544d2f | PE32+ executable (GUI) x86-64, for MS Windows, 7 sections |
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | files - file ~tmp01925d3f.exe |
| YARAhub by abuse.ch | malware | files - file ~tmp01925d3f.exe |
| Public Nextron YARA rules | malware | Winnti sample - file NlaifSvc.dll |
| Public Nextron YARA rules | malware | Detects imphash often found in malware samples (Maximum 0,25% hits with search for 'imphash:x p:0' on Virustotal) = 99,75% hits |
| Public InfoSec YARA rules | malware | Identifies executable converted using PyInstaller. |
| VirusTotal | malicious |
JavaScript (0)
No JavaScripts
HTTP Transactions (2)
| URL | IP | Response | Size |
|---|