Threat Database Potentially Unwanted Programs PUP.Gamehack.GSB

PUP.Gamehack.GSB

By CagedTech in Potentially Unwanted Programs

Table of Contents

Analysis Report

General information

Family Name:	PUP.Gamehack.GSB
Signature status:	No Signature

Known Samples

MD5: 1aa64d057b99b88336131a7538a50c7f

SHA1: 89eb9de60ab07b1e71ca5c57d545829f697e46c5

SHA256: FB476A3509797E88DBE19502CFEFF2064861351D898F823A614985DA9399B403

File Size: 14.85 KB, 14848 bytes

Windows Portable Executable Attributes

File doesn't have "Rich" header
File doesn't have exports table
File doesn't have security information
File is 64-bit executable
File is console application (IMAGE_SUBSYSTEM_WINDOWS_CUI)
File is either console or GUI application
File is Native application (NOT .NET application)
File is not packed
IMAGE_FILE_DLL is not set inside PE header (Executable)
IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Traits

No Version Info
x64

Block Information

Total Blocks:	42
Potentially Malicious Blocks:	1
Whitelisted Blocks:	41
Unknown Blocks:	0

Visual Map

x 0 0 0 0 0 2 0 0 0 0 1 0 1 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 2 0 0 0 0 0

0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Windows API Usage

Category

API

Syscall Use

ntdll.dll!NtAlpcSendWaitReceivePort
ntdll.dll!NtClose
ntdll.dll!NtDeviceIoControlFile
ntdll.dll!NtEnumerateKey
ntdll.dll!NtEnumerateValueKey
ntdll.dll!NtFreeVirtualMemory
ntdll.dll!NtGetNlsSectionPtr
ntdll.dll!NtOpenKey
ntdll.dll!NtProtectVirtualMemory
ntdll.dll!NtQueryAttributesFile

Show More

ntdll.dll!NtQueryInformationThread
ntdll.dll!NtQueryInformationToken
ntdll.dll!NtQueryValueKey
ntdll.dll!NtQueryVirtualMemory
ntdll.dll!NtSetEvent
ntdll.dll!NtTestAlert
ntdll.dll!NtWriteFile
ntdll.dll!NtWriteVirtualMemory
win32u.dll!NtUserGetKeyboardLayout
win32u.dll!NtUserGetThreadState

Trending

My Weather Tab Browser Extension

Potentially Unwanted Programs, Browser Hijackers

August 28, 2023

Researchers have identified a browser extension known as 'My Weather Tab.' Through a comprehensive examination, it has been determined that this extension functions as a form of browser-hijacking...

Mega Ad Blocker

Potentially Unwanted Programs, Adware

October 9, 2025

Keeping devices free from intrusive and untrustworthy software is vital for maintaining privacy, security, and performance. Potentially Unwanted Programs (PUPs) often disguise themselves as...

American Express - Sign-in Attempt Was Blocked Scam

October 3, 2025

Cybercriminals often exploit the familiarity of trusted brands to lure unsuspecting users into revealing sensitive information. The 'American Express - Sign-In Attempt Was Blocked' scam is a prime example of this tactic. These emails impersonate security alerts from American Express, claiming that a suspicious sign-in attempt was blocked and urging the recipient to take immediate action. It is...

Most Viewed

How To Fix 'Printer Driver is Unavailable' Error

June 29, 2021 52,729

Printers are notorious for refusing to do their job whenever the user needs it the most. Luckily, if your printer is displaying the Printer Driver is Unavailable' error, then there are a couple of...

Discord Is Stuck on Gray Screen

September 15, 2021 40,349

Sometimes, while using the Discord application, users may get stuck on a gray screen. The problem may occur while streaming or simply loading the application. If this has happened to you and you...

Discord Shows Black Screen when Sharing Screen screenshot

Discord Shows Black Screen when Sharing Screen

June 21, 2021 38,520

When it first launched, Discord was a VoIP platform geared toward the gaming community. However, in the following years, it expanded its scope, added numerous new features, and became one of the...

Loading...