Suspect
7ec3ac5da9b47fb3d1f3b7543d49488f
ZIP Archive | MD5: 7ec3ac5da9b47fb3d1f3b7543d49488f | Size: 28.56 MB | application/zip
ZIP Archive
MD5: 7ec3ac5da9b47fb3d1f3b7543d49488f
Size: 28.56 MB
application/zip
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 7ec3ac5da9b47fb3d1f3b7543d49488f
|
| Sha1 | c76e3c4b6efbb0d92f39b9a89cdd56d8cd0a46e3
|
| Sha256 | b68784056647ffcfefcb70ca44321b782930f91feed10033e5d48197368804a9
|
| Sha384 | 7e163c4d335278ff847e7b3668982f7ab00f4ea71deb111b8dbb22d1c77f91676901015cd0856b466ffd6fc22a8e0c69
|
| Sha512 | 50eda7d36e129b9589ad21d139b7c06168a29777d0180121f0db24275af58c6c0427a9abf0c7b49041a31dc22db511a25b3dbbf5c033f4644ee4048c2d4229fe
|
| SSDeep | 786432:jKp/8/2Ahg5LGIlt/jsvSmx8RsucEj6m6Htt2GgGb:jKSeq2sJ8/QNzHb
|
| TLSH | 0C573374CA09E874E1B1FE7F90871626C9B0B30552783E46529832A54CEF2DBCF5477A
|
File Structure
7ec3ac5da9b47fb3d1f3b7543d49488f
Lib
Academic.stt
AnalyticsPlatform.stt
APA_SansSerif_10pt.stt
APA_Styles.sgt
APA_TimesRoma_12pt.stt
Blue.stt
BlueYellowContrast.stt
BlueYellowContrastAlternate.stt
Bright.sgt
chart_style.sgt
Classic.stt
ClassicAlternate.stt
Cobalt.stt
CobaltAlternate.stt
CobaltHeaders.stt
Compact.stt
CompactBoxed.stt
Contrast.stt
ContrastAlternate.stt
Dark.sgt
default.stt
Easter Egg.stt
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.reloc
ExchangeRestore64.dll
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rdata
.data
.pdata
.reloc
ExchDBBkp.dll
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
Forest.stt
Gray.stt
GrayAlternate.stt
HypervBackup.dll
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
IDComponent.dll
[Authenticode]_208f722f.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
IDComponent.Wimlib.WimFileErrors.resources
LargeFont.stt
LegacyDefault.sgt
AvantGarde.stt
Boxed.stt
CompactAcademic.stt
Horizontal.stt
NoBorders.stt
SPSSDocCorner.stt
TimesRoman.stt
VerticalBars.stt
Warning.stt
Mellow.sgt
MonocolorContrast.stt
MonocolorContrastAlternate.stt
Original.stt
Pastels.sgt
PublicationGray.sgt
Report.stt
ShadesOfGrey.stt
Simple.stt
Soft.stt
Statistics26ChartLook.sgt
Statistics28ChartLook.sgt
Typewriter.stt
WebReport.sgt
WebReportBlue.stt
locales
am.pak
ar.pak
bg.pak
bn.pak
ca.pak
cs.pak
da.pak
de.pak
el.pak
en-GB.pak
en-US.pak
es-419.pak
es.pak
et.pak
fa.pak
fi.pak
fil.pak
fr.pak
gu.pak
he.pak
hi.pak
hr.pak
hu.pak
id.pak
it.pak
ja.pak
kn.pak
ko.pak
lt.pak
lv.pak
ml.pak
mr.pak
ms.pak
nb.pak
nl.pak
pl.pak
pt-BR.pak
pt-PT.pak
ro.pak
ru.pak
sk.pak
sl.pak
sr.pak
sv.pak
sw.pak
ta.pak
te.pak
th.pak
tr.pak
uk.pak
vi.pak
zh-CN.pak
zh-TW.pak
[Authenticode]_21174f26.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.rsrc
.reloc
Resources
RT_CURSOR
ID:0006
ID:1033
ID:0007
ID:1033
ID:0008
ID:1033
ID:0009
ID:1033
ID:000A
ID:1033
ID:000B
ID:1033
ID:000C
ID:1033
ID:000D
ID:1033
ID:000E
ID:1033
ID:000F
ID:1033
ID:0010
ID:1033
ID:0011
ID:1033
ID:0012
ID:1033
ID:0013
ID:1033
ID:0014
ID:1033
ID:0015
ID:1033
RT_BITMAP
ID:7912
ID:1033
ID:7914
ID:1033
RT_ICON
ID:0001
ID:2052
ID:0002
ID:2052
ID:0003
ID:2052
ID:0004
ID:2052
ID:0005
ID:2052
RT_DIALOG
ID:0064
ID:1033
ID:0066
ID:1033
ID:7801
ID:1033
ID:780E
ID:1033
RT_STRING
ID:0007
ID:1033
ID:0F01
ID:1033
ID:0F02
ID:1033
ID:0F03
ID:1033
ID:0F11
ID:1033
ID:0F12
ID:1033
ID:0F13
ID:1033
ID:0F14
ID:1033
ID:0F19
ID:1033
ID:0F1A
ID:1033
ID:0F1B
ID:1033
ID:0F1C
ID:1033
ID:0F1D
ID:1033
ID:0F2F
ID:1033
RT_GROUP_CURSOR2
ID:7901
ID:1033
ID:7916
ID:1033
ID:7917
ID:1033
ID:7918
ID:1033
ID:7919
ID:1033
ID:791A
ID:1033
ID:791B
ID:1033
ID:791C
ID:1033
ID:791D
ID:1033
ID:791E
ID:1033
ID:791F
ID:1033
ID:7920
ID:1033
ID:7921
ID:1033
ID:7922
ID:1033
ID:7923
ID:1033
RT_GROUP_CURSOR4
ID:0080
ID:2052
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0001
ID:1033
unins000.dat
Uninstall
unins000.dat
[Authenticode]_046e6fde.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.itext
.data
.bss
.idata
.tls
.rdata
.rsrc
Resources
RT_CURSOR
ID:0001
ID:1033
ID:0002
ID:1033
ID:0003
ID:1033
ID:0004
ID:1033
ID:0005
ID:1033
ID:0006
ID:1033
ID:0007
ID:1033
RT_BITMAP
ID:0000
ID:0
RT_ICON
ID:0001
ID:1033
ID:0002
ID:1033
ID:0003
ID:1033
ID:0004
ID:1033
ID:0005
ID:1033
ID:0006
ID:1033
ID:1033-preview.png
ID:0007
ID:1033
ID:0008
ID:1033
ID:0009
ID:1033
ID:000A
ID:1033
ID:000B
ID:1033
RT_STRING
ID:0FF0
ID:0
ID:0FF1
ID:0
ID:0FF2
ID:0
ID:0FF3
ID:0
ID:0FF4
ID:0
ID:0FF5
ID:0
ID:0FF6
ID:0
ID:0FF7
ID:0
ID:0FF8
ID:0
ID:0FF9
ID:0
ID:0FFA
ID:0
ID:0FFB
ID:0
ID:0FFC
ID:0
ID:0FFD
ID:0
ID:0FFE
ID:0
ID:0FFF
ID:0
ID:1000
ID:0
RT_RCDATA
ID:0000
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rdata
.data
.pdata
.rsrc
.reloc
Optional Header (x86)
Resources
RT_MANIFEST
ID:0001
ID:1033
RT_STRING
ID:0001
ID:1027
ID:1028
ID:1029
ID:1030
ID:1031
ID:1032
ID:1033
ID:1034
ID:1035
ID:1036
ID:1038
ID:1039
ID:1040
ID:1041
ID:1042
ID:1043
ID:1044
ID:1045
ID:1046
ID:1049
ID:1051
ID:1053
ID:1055
ID:1060
ID:1069
ID:2052
ID:2070
RT_VERSION
ID:0001
ID:0
Overlay_8ad664d7.bin
ID:0
RT_GROUP_CURSOR2
ID:7FF9
ID:1033
ID:7FFA
ID:1033
ID:7FFB
ID:1033
ID:7FFC
ID:1033
ID:7FFD
ID:1033
ID:7FFE
ID:1033
ID:7FFF
ID:1033
RT_GROUP_CURSOR4
ID:0000
ID:1033
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0001
ID:1033
unins000.msg
[Authenticode]_63aa4f64.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.data
.idata
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:1033
[Authenticode]_a9e341a6.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.unwante
.rsrc
.reloc
Resources
MUI
ID:0001
ID:1033
RT_RCDATA
ID:0000
[Authenticode]_a4a3cdc6.p7b
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rdata
.data
.pdata
.crthunk
.fptable
.tls
CPADinfo
_RDATA
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0002
ID:1033
[Authenticode]_19499ecd.p7b
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
fothk
.rdata
.data
.pdata
.didat
.fptable
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:1033
614
ID:0001
ID:1033
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0002
ID:1033
x86
cached
aboutdialog.res
accepted_cards.tga
AccountPage.res
accountsettingswebdialog.layout
asyncnotificationsrequesteddialog.res
CDIcon.tga
cdkeyreceipthtml.res
charityquestiondialog.layout
chatroom_locked.tga
chatroom_speaking.tga
chatroom_speakingdata.tga
chatroom_unlocked.tga
ChooseBetaDialog.res
ClickAndBuy.tga
cloudsyncwarningdialog.res
convertcontentdialog.res
CreditCardPreorderReceipt.html
CreditCardReceipt.html
DefragAppDialog.res
DeleteCache.res
details_titlebg.tga
DialogCheckForUpdates.res
DialogCheckForUpdates_Expanded.res
DialogCheckVideoDriver.res
DuplicateCC.res
durationcontrolinitial.layout
durationcontrolnotification.layout
emailsubpanel.res
fav_addTo.tga
fav_addTo_ovr.tga
fav_remove.tga
fav_remove_ovr.tga
gameproperties_betas.res
gameproperties_dlc.res
gameproperties_general.res
gameproperties_language.res
gameproperties_localfiles.res
gameproperties_shortcuts.res
game_details_header_blue.tga
game_details_header_green.tga
game_details_header_mask.tga
game_details_header_red.tga
GiftRevoked.res
giving_header.tga
gridview_dropshadow.tga
gridview_mask.tga
gridview_placeholder_0.tga
gridview_placeholder_1.tga
gridview_placeholder_2.tga
gridview_placeholder_3.tga
gridview_shadow.tga
GuestPassAcceptError.res
GuestPassAcceptOK.res
GuestPassesDialog.res
GuestPassRedeemed.res
icon_button_back_disabled_sm.tga
icon_button_back_down_sm.tga
icon_button_back_sm.tga
icon_button_forward_disabled_sm.tga
icon_button_forward_down_sm.tga
icon_button_forward_sm.tga
icon_cloud_conflict.tga
icon_cloud_disabled.tga
icon_cloud_dunno.tga
icon_cloud_enabled.tga
icon_cloud_enabled_dark_bg.tga
icon_cloud_outofsync.tga
icon_cloud_synced.tga
icon_cloud_syncing.tga
icon_controller.tga
icon_game_frame.tga
icon_tab_placement_arrow.tga
InstallDirextXDialog.res
LaunchEULADialog.res
LaunchOptionsDialog.res
listview_icon_mask.tga
listview_logo_mask.tga
listview_placeholder0.tga
listview_placeholder1.tga
listview_placeholder2.tga
listview_placeholder3.tga
LocalizedAudioChoiceDialog.res
loggedinelsewherenotification.res
logo.tga
managedeviceauthdialog.res
MediaConfirmationDialog.res
movelibrarydialog.res
needworkshoplegalagreementacceptance.res
nobigpicture.res
nobigpicturevista.res
nobigpicturewin8amd.res
NotifyTrayHintDialog.res
offline_brazilian.html
offline_bulgarian.html
offline_czech.html
offline_danish.html
offline_dutch.html
offline_english.html
offline_finnish.html
offline_french.html
offline_german.html
offline_greek.html
offline_hungarian.html
offline_indonesian.html
offline_italian.html
offline_japanese.html
offline_korean.html
offline_latam.html
offline_norwegian.html
offline_polish.html
offline_portuguese.html
offline_romanian.html
offline_russian.html
offline_schinese.html
offline_sc_schinese.html
offline_swedish.html
offline_tchinese.html
offline_thai.html
offline_turkish.html
offline_ukrainian.html
offline_vietnamese.html
OverlayBatteryNotification.res
OverlayCDKeyDialog.res
OverlayCDKeyNotification.res
OverlayDashboard.res
OverlaySplash.res
OverlayTaskbar.res
PayPalReceipt.html
PurchaseSubExternalSignup.res
Receipt_AlreadyPurchased.res
Receipt_Blank.res
Receipt_CC_Alert.res
Receipt_CC_Declined.res
Receipt_CC_Declined_AVSFailure.res
Receipt_CC_Declined_InsufficientFunds.res
Receipt_CC_Denied_FromPreorder.res
Receipt_CC_Preorder.res
Receipt_CC_Success.res
Receipt_CC_Success_FromPreorder.res
Receipt_CC_Success_WithShipping.res
Receipt_CC_UseLimit.res
Receipt_CDKey_Cancelled.res
Receipt_CDKey_InvalidKey.res
receipt_cdkey_mustloginps3.res
Receipt_CDKey_MustOwnOtherApp.res
Receipt_CDKey_RateLimited.res
Receipt_CDKey_Rejected.res
Receipt_CDKey_Success.res
Receipt_Contact_Support.res
Receipt_HardwarePromo_AlreadyPurchased.res
Receipt_HardwarePromo_Success.res
Receipt_HardwarePromo_Used.res
Receipt_PayPal_Declined.res
Receipt_PayPal_InvalidShippingAddress.res
Receipt_PayPal_Preorder.res
Receipt_PayPal_Success.res
Receipt_PayPal_Success_WithShipping.res
Receipt_PayPal_UseOtherFundingSource.res
Receipt_PayPal_UseOtherPaymentMethod.res
Receipt_PreorderCancelled.res
Receipt_Purchase_AccountNotVerified.res
Receipt_Purchase_ContactProviderSupport.res
Receipt_Purchase_Refunded.res
Receipt_Restricted_Country.res
Receipt_Server_Failure.res
Receipt_Server_RegionNotSupported.res
Receipt_Server_Timeout.res
Receipt_Server_Timeout_BFS.res
Receipt_Server_Timeout_Steam3.res
regionrestrictiondialog.res
regionrestrictiondialog_activation.res
regionrestrictiondialog_purchase.res
repairlibrarydialog.res
RetailInstallLockedDialog.res
SendGuestPassEnterDetailsSubPanel.res
SendGuestPassResultSubPanel.res
SendGuestPassResultSubPanel_failure.res
SendGuestPassResultSubPanel_success.res
setjumplistoptions.res
SettingsSubInterface.res
SettingsSubOverlay.res
SettingsSubVoice.res
soundsystemselect.res
SpecialOffersDialog.res
SteamIDProfilePage.res
steamui_postlogon_brazilian.txt
steamui_postlogon_bulgarian.txt
steamui_postlogon_czech.txt
steamui_postlogon_danish.txt
steamui_postlogon_dutch.txt
steamui_postlogon_english.txt
steamui_postlogon_finnish.txt
steamui_postlogon_french.txt
steamui_postlogon_german.txt
steamui_postlogon_greek.txt
steamui_postlogon_hungarian.txt
steamui_postlogon_indonesian.txt
steamui_postlogon_italian.txt
steamui_postlogon_japanese.txt
steamui_postlogon_korean.txt
steamui_postlogon_latam.txt
steamui_postlogon_norwegian.txt
steamui_postlogon_polish.txt
steamui_postlogon_portuguese.txt
steamui_postlogon_romanian.txt
steamui_postlogon_russian.txt
steamui_postlogon_schinese.txt
steamui_postlogon_sc_schinese.txt
steamui_postlogon_spanish.txt
steamui_postlogon_swedish.txt
steamui_postlogon_tchinese.txt
steamui_postlogon_thai.txt
steamui_postlogon_turkish.txt
steamui_postlogon_ukrainian.txt
steamui_postlogon_vietnamese.txt
steam_logo_onwhite.gif
steam_logo_onwhite.gif-preview.png
StorefrontDialog.res
storepage.res
SubChangeContactEmailComplete.res
SubChangeContactEmailIntro.res
SubChangeContactEmailValidated.res
SubChangePasswordChangePassword.res
SubChangePasswordComplete.res
subchangepasswordenterpassword.res
subchangepasswordintro.res
submanagesecuritychoosename.res
submanagesecuritydone.res
submanagesecurityintro.res
submanagesecuritylock.res
submanagesecurityunlock.res
SubPanelConvertCDKeyFinished.res
SubPanelConvertCDKeyIntro.res
subvalidatecontactemaildone.res
subvalidatecontactemailintro.res
SystemRequirementsDialog.res
turn_icon_large.tga
UpdateNewsDialog.res
windowscompat.res
games
0fe53afefcf2a163def503393c09f5cfa5525fcf.ico
ca3cbabb109b7675ad511c9cfa1c3b0627dd3428.ico
f962202b06de547cf47c156bdd7aaa5bf7f2cdbb.ico
PlatformMenu.vdf
SteamMovie.ico
Artefacts
|
Name0 | Value |
|---|---|
| URLs in VB Code - #1 | https://www.idrive.com/terms-and-conditions |
| URLs in VB Code - #1 | http://schemas.microsoft.com/SMI/2005/WindowsSettings |
| URLs in VB Code - #2 | http://ocsp.digicert.com0A |
| URLs in VB Code - #3 | http://cacerts.digicert.com/DigiCertTrustedRootG4.crt0C |
| URLs in VB Code - #4 | http://crl3.digicert.com/DigiCertTrustedRootG4.crl0 |
| URLs in VB Code - #5 | http://www.digicert.com/CPS0 |
| URLs in VB Code - #6 | http://crl3.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crl0S |
| URLs in VB Code - #7 | http://crl4.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crl0 |
| URLs in VB Code - #8 | http://ocsp.digicert.com0 |
| URLs in VB Code - #9 | http://cacerts.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crt0 |
| URLs in VB Code - #10 | http://cacerts.digicert.com/DigiCertTrustedG4TimeStampingRSA4096SHA2562025CA1.crt0_ |
| URLs in VB Code - #11 | http://crl3.digicert.com/DigiCertTrustedG4TimeStampingRSA4096SHA2562025CA1.crl0 |
| URLs in VB Code - #12 | http://ocsp.digicert.com0C |
| URLs in VB Code - #13 | http://cacerts.digicert.com/DigiCertAssuredIDRootCA.crt0E |
| URLs in VB Code - #14 | http://crl3.digicert.com/DigiCertAssuredIDRootCA.crl0 |
7ec3ac5da9b47fb3d1f3b7543d49488f (28.56 MB)
File Structure
7ec3ac5da9b47fb3d1f3b7543d49488f
Lib
Academic.stt
AnalyticsPlatform.stt
APA_SansSerif_10pt.stt
APA_Styles.sgt
APA_TimesRoma_12pt.stt
Blue.stt
BlueYellowContrast.stt
BlueYellowContrastAlternate.stt
Bright.sgt
chart_style.sgt
Classic.stt
ClassicAlternate.stt
Cobalt.stt
CobaltAlternate.stt
CobaltHeaders.stt
Compact.stt
CompactBoxed.stt
Contrast.stt
ContrastAlternate.stt
Dark.sgt
default.stt
Easter Egg.stt
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.reloc
ExchangeRestore64.dll
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rdata
.data
.pdata
.reloc
ExchDBBkp.dll
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
Forest.stt
Gray.stt
GrayAlternate.stt
HypervBackup.dll
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
IDComponent.dll
[Authenticode]_208f722f.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
IDComponent.Wimlib.WimFileErrors.resources
LargeFont.stt
LegacyDefault.sgt
AvantGarde.stt
Boxed.stt
CompactAcademic.stt
Horizontal.stt
NoBorders.stt
SPSSDocCorner.stt
TimesRoman.stt
VerticalBars.stt
Warning.stt
Mellow.sgt
MonocolorContrast.stt
MonocolorContrastAlternate.stt
Original.stt
Pastels.sgt
PublicationGray.sgt
Report.stt
ShadesOfGrey.stt
Simple.stt
Soft.stt
Statistics26ChartLook.sgt
Statistics28ChartLook.sgt
Typewriter.stt
WebReport.sgt
WebReportBlue.stt
locales
am.pak
ar.pak
bg.pak
bn.pak
ca.pak
cs.pak
da.pak
de.pak
el.pak
en-GB.pak
en-US.pak
es-419.pak
es.pak
et.pak
fa.pak
fi.pak
fil.pak
fr.pak
gu.pak
he.pak
hi.pak
hr.pak
hu.pak
id.pak
it.pak
ja.pak
kn.pak
ko.pak
lt.pak
lv.pak
ml.pak
mr.pak
ms.pak
nb.pak
nl.pak
pl.pak
pt-BR.pak
pt-PT.pak
ro.pak
ru.pak
sk.pak
sl.pak
sr.pak
sv.pak
sw.pak
ta.pak
te.pak
th.pak
tr.pak
uk.pak
vi.pak
zh-CN.pak
zh-TW.pak
[Authenticode]_21174f26.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.rsrc
.reloc
Resources
RT_CURSOR
ID:0006
ID:1033
ID:0007
ID:1033
ID:0008
ID:1033
ID:0009
ID:1033
ID:000A
ID:1033
ID:000B
ID:1033
ID:000C
ID:1033
ID:000D
ID:1033
ID:000E
ID:1033
ID:000F
ID:1033
ID:0010
ID:1033
ID:0011
ID:1033
ID:0012
ID:1033
ID:0013
ID:1033
ID:0014
ID:1033
ID:0015
ID:1033
RT_BITMAP
ID:7912
ID:1033
ID:7914
ID:1033
RT_ICON
ID:0001
ID:2052
ID:0002
ID:2052
ID:0003
ID:2052
ID:0004
ID:2052
ID:0005
ID:2052
RT_DIALOG
ID:0064
ID:1033
ID:0066
ID:1033
ID:7801
ID:1033
ID:780E
ID:1033
RT_STRING
ID:0007
ID:1033
ID:0F01
ID:1033
ID:0F02
ID:1033
ID:0F03
ID:1033
ID:0F11
ID:1033
ID:0F12
ID:1033
ID:0F13
ID:1033
ID:0F14
ID:1033
ID:0F19
ID:1033
ID:0F1A
ID:1033
ID:0F1B
ID:1033
ID:0F1C
ID:1033
ID:0F1D
ID:1033
ID:0F2F
ID:1033
RT_GROUP_CURSOR2
ID:7901
ID:1033
ID:7916
ID:1033
ID:7917
ID:1033
ID:7918
ID:1033
ID:7919
ID:1033
ID:791A
ID:1033
ID:791B
ID:1033
ID:791C
ID:1033
ID:791D
ID:1033
ID:791E
ID:1033
ID:791F
ID:1033
ID:7920
ID:1033
ID:7921
ID:1033
ID:7922
ID:1033
ID:7923
ID:1033
RT_GROUP_CURSOR4
ID:0080
ID:2052
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0001
ID:1033
unins000.dat
Uninstall
unins000.dat
[Authenticode]_046e6fde.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.itext
.data
.bss
.idata
.tls
.rdata
.rsrc
Resources
RT_CURSOR
ID:0001
ID:1033
ID:0002
ID:1033
ID:0003
ID:1033
ID:0004
ID:1033
ID:0005
ID:1033
ID:0006
ID:1033
ID:0007
ID:1033
RT_BITMAP
ID:0000
ID:0
RT_ICON
ID:0001
ID:1033
ID:0002
ID:1033
ID:0003
ID:1033
ID:0004
ID:1033
ID:0005
ID:1033
ID:0006
ID:1033
ID:1033-preview.png
ID:0007
ID:1033
ID:0008
ID:1033
ID:0009
ID:1033
ID:000A
ID:1033
ID:000B
ID:1033
RT_STRING
ID:0FF0
ID:0
ID:0FF1
ID:0
ID:0FF2
ID:0
ID:0FF3
ID:0
ID:0FF4
ID:0
ID:0FF5
ID:0
ID:0FF6
ID:0
ID:0FF7
ID:0
ID:0FF8
ID:0
ID:0FF9
ID:0
ID:0FFA
ID:0
ID:0FFB
ID:0
ID:0FFC
ID:0
ID:0FFD
ID:0
ID:0FFE
ID:0
ID:0FFF
ID:0
ID:1000
ID:0
RT_RCDATA
ID:0000
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rdata
.data
.pdata
.rsrc
.reloc
Optional Header (x86)
Resources
RT_MANIFEST
ID:0001
ID:1033
RT_STRING
ID:0001
ID:1027
ID:1028
ID:1029
ID:1030
ID:1031
ID:1032
ID:1033
ID:1034
ID:1035
ID:1036
ID:1038
ID:1039
ID:1040
ID:1041
ID:1042
ID:1043
ID:1044
ID:1045
ID:1046
ID:1049
ID:1051
ID:1053
ID:1055
ID:1060
ID:1069
ID:2052
ID:2070
RT_VERSION
ID:0001
ID:0
Overlay_8ad664d7.bin
ID:0
RT_GROUP_CURSOR2
ID:7FF9
ID:1033
ID:7FFA
ID:1033
ID:7FFB
ID:1033
ID:7FFC
ID:1033
ID:7FFD
ID:1033
ID:7FFE
ID:1033
ID:7FFF
ID:1033
RT_GROUP_CURSOR4
ID:0000
ID:1033
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0001
ID:1033
unins000.msg
[Authenticode]_63aa4f64.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.data
.idata
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:1033
[Authenticode]_a9e341a6.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.unwante
.rsrc
.reloc
Resources
MUI
ID:0001
ID:1033
RT_RCDATA
ID:0000
[Authenticode]_a4a3cdc6.p7b
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rdata
.data
.pdata
.crthunk
.fptable
.tls
CPADinfo
_RDATA
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0002
ID:1033
[Authenticode]_19499ecd.p7b
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
fothk
.rdata
.data
.pdata
.didat
.fptable
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:1033
614
ID:0001
ID:1033
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0002
ID:1033
x86
cached
aboutdialog.res
accepted_cards.tga
AccountPage.res
accountsettingswebdialog.layout
asyncnotificationsrequesteddialog.res
CDIcon.tga
cdkeyreceipthtml.res
charityquestiondialog.layout
chatroom_locked.tga
chatroom_speaking.tga
chatroom_speakingdata.tga
chatroom_unlocked.tga
ChooseBetaDialog.res
ClickAndBuy.tga
cloudsyncwarningdialog.res
convertcontentdialog.res
CreditCardPreorderReceipt.html
CreditCardReceipt.html
DefragAppDialog.res
DeleteCache.res
details_titlebg.tga
DialogCheckForUpdates.res
DialogCheckForUpdates_Expanded.res
DialogCheckVideoDriver.res
DuplicateCC.res
durationcontrolinitial.layout
durationcontrolnotification.layout
emailsubpanel.res
fav_addTo.tga
fav_addTo_ovr.tga
fav_remove.tga
fav_remove_ovr.tga
gameproperties_betas.res
gameproperties_dlc.res
gameproperties_general.res
gameproperties_language.res
gameproperties_localfiles.res
gameproperties_shortcuts.res
game_details_header_blue.tga
game_details_header_green.tga
game_details_header_mask.tga
game_details_header_red.tga
GiftRevoked.res
giving_header.tga
gridview_dropshadow.tga
gridview_mask.tga
gridview_placeholder_0.tga
gridview_placeholder_1.tga
gridview_placeholder_2.tga
gridview_placeholder_3.tga
gridview_shadow.tga
GuestPassAcceptError.res
GuestPassAcceptOK.res
GuestPassesDialog.res
GuestPassRedeemed.res
icon_button_back_disabled_sm.tga
icon_button_back_down_sm.tga
icon_button_back_sm.tga
icon_button_forward_disabled_sm.tga
icon_button_forward_down_sm.tga
icon_button_forward_sm.tga
icon_cloud_conflict.tga
icon_cloud_disabled.tga
icon_cloud_dunno.tga
icon_cloud_enabled.tga
icon_cloud_enabled_dark_bg.tga
icon_cloud_outofsync.tga
icon_cloud_synced.tga
icon_cloud_syncing.tga
icon_controller.tga
icon_game_frame.tga
icon_tab_placement_arrow.tga
InstallDirextXDialog.res
LaunchEULADialog.res
LaunchOptionsDialog.res
listview_icon_mask.tga
listview_logo_mask.tga
listview_placeholder0.tga
listview_placeholder1.tga
listview_placeholder2.tga
listview_placeholder3.tga
LocalizedAudioChoiceDialog.res
loggedinelsewherenotification.res
logo.tga
managedeviceauthdialog.res
MediaConfirmationDialog.res
movelibrarydialog.res
needworkshoplegalagreementacceptance.res
nobigpicture.res
nobigpicturevista.res
nobigpicturewin8amd.res
NotifyTrayHintDialog.res
offline_brazilian.html
offline_bulgarian.html
offline_czech.html
offline_danish.html
offline_dutch.html
offline_english.html
offline_finnish.html
offline_french.html
offline_german.html
offline_greek.html
offline_hungarian.html
offline_indonesian.html
offline_italian.html
offline_japanese.html
offline_korean.html
offline_latam.html
offline_norwegian.html
offline_polish.html
offline_portuguese.html
offline_romanian.html
offline_russian.html
offline_schinese.html
offline_sc_schinese.html
offline_swedish.html
offline_tchinese.html
offline_thai.html
offline_turkish.html
offline_ukrainian.html
offline_vietnamese.html
OverlayBatteryNotification.res
OverlayCDKeyDialog.res
OverlayCDKeyNotification.res
OverlayDashboard.res
OverlaySplash.res
OverlayTaskbar.res
PayPalReceipt.html
PurchaseSubExternalSignup.res
Receipt_AlreadyPurchased.res
Receipt_Blank.res
Receipt_CC_Alert.res
Receipt_CC_Declined.res
Receipt_CC_Declined_AVSFailure.res
Receipt_CC_Declined_InsufficientFunds.res
Receipt_CC_Denied_FromPreorder.res
Receipt_CC_Preorder.res
Receipt_CC_Success.res
Receipt_CC_Success_FromPreorder.res
Receipt_CC_Success_WithShipping.res
Receipt_CC_UseLimit.res
Receipt_CDKey_Cancelled.res
Receipt_CDKey_InvalidKey.res
receipt_cdkey_mustloginps3.res
Receipt_CDKey_MustOwnOtherApp.res
Receipt_CDKey_RateLimited.res
Receipt_CDKey_Rejected.res
Receipt_CDKey_Success.res
Receipt_Contact_Support.res
Receipt_HardwarePromo_AlreadyPurchased.res
Receipt_HardwarePromo_Success.res
Receipt_HardwarePromo_Used.res
Receipt_PayPal_Declined.res
Receipt_PayPal_InvalidShippingAddress.res
Receipt_PayPal_Preorder.res
Receipt_PayPal_Success.res
Receipt_PayPal_Success_WithShipping.res
Receipt_PayPal_UseOtherFundingSource.res
Receipt_PayPal_UseOtherPaymentMethod.res
Receipt_PreorderCancelled.res
Receipt_Purchase_AccountNotVerified.res
Receipt_Purchase_ContactProviderSupport.res
Receipt_Purchase_Refunded.res
Receipt_Restricted_Country.res
Receipt_Server_Failure.res
Receipt_Server_RegionNotSupported.res
Receipt_Server_Timeout.res
Receipt_Server_Timeout_BFS.res
Receipt_Server_Timeout_Steam3.res
regionrestrictiondialog.res
regionrestrictiondialog_activation.res
regionrestrictiondialog_purchase.res
repairlibrarydialog.res
RetailInstallLockedDialog.res
SendGuestPassEnterDetailsSubPanel.res
SendGuestPassResultSubPanel.res
SendGuestPassResultSubPanel_failure.res
SendGuestPassResultSubPanel_success.res
setjumplistoptions.res
SettingsSubInterface.res
SettingsSubOverlay.res
SettingsSubVoice.res
soundsystemselect.res
SpecialOffersDialog.res
SteamIDProfilePage.res
steamui_postlogon_brazilian.txt
steamui_postlogon_bulgarian.txt
steamui_postlogon_czech.txt
steamui_postlogon_danish.txt
steamui_postlogon_dutch.txt
steamui_postlogon_english.txt
steamui_postlogon_finnish.txt
steamui_postlogon_french.txt
steamui_postlogon_german.txt
steamui_postlogon_greek.txt
steamui_postlogon_hungarian.txt
steamui_postlogon_indonesian.txt
steamui_postlogon_italian.txt
steamui_postlogon_japanese.txt
steamui_postlogon_korean.txt
steamui_postlogon_latam.txt
steamui_postlogon_norwegian.txt
steamui_postlogon_polish.txt
steamui_postlogon_portuguese.txt
steamui_postlogon_romanian.txt
steamui_postlogon_russian.txt
steamui_postlogon_schinese.txt
steamui_postlogon_sc_schinese.txt
steamui_postlogon_spanish.txt
steamui_postlogon_swedish.txt
steamui_postlogon_tchinese.txt
steamui_postlogon_thai.txt
steamui_postlogon_turkish.txt
steamui_postlogon_ukrainian.txt
steamui_postlogon_vietnamese.txt
steam_logo_onwhite.gif
steam_logo_onwhite.gif-preview.png
StorefrontDialog.res
storepage.res
SubChangeContactEmailComplete.res
SubChangeContactEmailIntro.res
SubChangeContactEmailValidated.res
SubChangePasswordChangePassword.res
SubChangePasswordComplete.res
subchangepasswordenterpassword.res
subchangepasswordintro.res
submanagesecuritychoosename.res
submanagesecuritydone.res
submanagesecurityintro.res
submanagesecuritylock.res
submanagesecurityunlock.res
SubPanelConvertCDKeyFinished.res
SubPanelConvertCDKeyIntro.res
subvalidatecontactemaildone.res
subvalidatecontactemailintro.res
SystemRequirementsDialog.res
turn_icon_large.tga
UpdateNewsDialog.res
windowscompat.res
games
0fe53afefcf2a163def503393c09f5cfa5525fcf.ico
ca3cbabb109b7675ad511c9cfa1c3b0627dd3428.ico
f962202b06de547cf47c156bdd7aaa5bf7f2cdbb.ico
PlatformMenu.vdf
SteamMovie.ico
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| URLs in VB Code - #1 | https://www.idrive.com/terms-and-conditions |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.dat |
| URLs in VB Code - #1 | http://schemas.microsoft.com/SMI/2005/WindowsSettings |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.exe |
| URLs in VB Code - #2 | http://ocsp.digicert.com0A |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.exe |
| URLs in VB Code - #3 | http://cacerts.digicert.com/DigiCertTrustedRootG4.crt0C |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.exe |
| URLs in VB Code - #4 | http://crl3.digicert.com/DigiCertTrustedRootG4.crl0 |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.exe |
| URLs in VB Code - #5 | http://www.digicert.com/CPS0 |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.exe |
| URLs in VB Code - #6 | http://crl3.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crl0S |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.exe |
| URLs in VB Code - #7 | http://crl4.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crl0 |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.exe |
| URLs in VB Code - #8 | http://ocsp.digicert.com0 |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.exe |
| URLs in VB Code - #9 | http://cacerts.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crt0 |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.exe |
| URLs in VB Code - #10 | http://cacerts.digicert.com/DigiCertTrustedG4TimeStampingRSA4096SHA2562025CA1.crt0_ |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.exe |
| URLs in VB Code - #11 | http://crl3.digicert.com/DigiCertTrustedG4TimeStampingRSA4096SHA2562025CA1.crl0 |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.exe |
| URLs in VB Code - #12 | http://ocsp.digicert.com0C |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.exe |
| URLs in VB Code - #13 | http://cacerts.digicert.com/DigiCertAssuredIDRootCA.crt0E |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.exe |
| URLs in VB Code - #14 | http://crl3.digicert.com/DigiCertAssuredIDRootCA.crl0 |
7ec3ac5da9b47fb3d1f3b7543d49488f > Uninstall > unins000.exe |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.