Overview

overview

10

Static

static

8

announce.exe

windows7-x64

10

announce.exe

windows10-2004-x64

1

plugins/regex.so

ubuntu-18.04-amd64

1

plugins/sscanf.dll

windows7-x64

3

plugins/sscanf.dll

windows10-2004-x64

3

plugins/sscanf.so

ubuntu-18.04-amd64

1

plugins/streamer.dll

windows7-x64

3

plugins/streamer.dll

windows10-2004-x64

3

plugins/streamer.so

ubuntu-18.04-amd64

1

samp-npc.exe

windows7-x64

10

samp-npc.exe

windows10-2004-x64

10

samp-server.exe

windows7-x64

10

samp-server.exe

windows10-2004-x64

10

scriptfile...ts.vbs

windows7-x64

1

scriptfile...ts.vbs

windows10-2004-x64

1

�...ts.vbs

windows7-x64

1

�...ts.vbs

windows10-2004-x64

1

�...ck.vbs

windows7-x64

1

�...ck.vbs

windows10-2004-x64

1

�...nc.dll

windows7-x64

1

�...nc.dll

windows10-2004-x64

1

�...cc.exe

windows7-x64

1

�...cc.exe

windows10-2004-x64

1

�...no.exe

windows7-x64

8

�...no.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4e32bec63d6c3bd84610060a50c7bffb89a7e19c2d41953b613d20f3d74dba2d

  • Size

    3.2MB

  • MD5

    07812bb2c19bbeb96f25aa87b0c08c89

  • SHA1

    d2f120d2f3f784c61495f2fca3e8b3708b7bb00d

  • SHA256

    4e32bec63d6c3bd84610060a50c7bffb89a7e19c2d41953b613d20f3d74dba2d

  • SHA512

    a2b4cdc46ffe163b2e9f75c7dc3c9cd4e334f5473c61aec796b72169c3e14f482e6a95302c4e1b3a16069849d500c690f9e0c90711f31027aee8c6876639eb2a

  • SSDEEP

    98304:iPccVoXKlwgxG7IAJ40zSiRNMKBMLaVae9F8w:2toXKlylLO2jBMLSa9w

Score
8/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Files

  • 4e32bec63d6c3bd84610060a50c7bffb89a7e19c2d41953b613d20f3d74dba2d
    .zip
  • announce.exe
    .exe windows x86

    5df40cb9994dcacb42f25de3fe7d92db


    Headers

    Imports

    Sections

  • gamemodes/123.amx
  • gamemodes/123.pwn
  • plugins/regex.so
    .elf linux x86
  • plugins/sscanf.dll
    .dll windows x86

    303f44b5567e256b75461f4196f84ea3


    Headers

    Imports

    Exports

    Sections

  • plugins/sscanf.so
    .elf linux x86
  • plugins/sscanf/SDK/amx/amx.h
  • plugins/sscanf/SDK/amx/getch.c
  • plugins/sscanf/SDK/amx/getch.h
  • plugins/sscanf/SDK/amx/sclinux.h
  • plugins/sscanf/SDK/amxplugin.cpp
  • plugins/sscanf/SDK/plugin.h
  • plugins/sscanf/SDK/plugincommon.h
  • plugins/sscanf/array.cpp
  • plugins/sscanf/array.h
  • plugins/sscanf/data.cpp
  • plugins/sscanf/data.h
  • plugins/sscanf/enum.cpp
  • plugins/sscanf/enum.h
  • plugins/sscanf/makefile
  • plugins/sscanf/specifiers.cpp
  • plugins/sscanf/specifiers.h
  • plugins/sscanf/sscanf.cpp
  • plugins/sscanf/sscanf.def
  • plugins/sscanf/sscanf.h
  • plugins/sscanf/sscanf.sln
  • plugins/sscanf/sscanf.suo
  • plugins/sscanf/sscanf.vcxproj
  • plugins/sscanf/sscanf.vcxproj.filters
  • plugins/sscanf/sscanf.vcxproj.user
  • plugins/sscanf/utils.cpp
  • plugins/sscanf/utils.h
  • plugins/streamer.dll
    .dll windows x86

    0d0a5f555a2103ec41c903522026d24a


    Headers

    Imports

    Exports

    Sections

  • plugins/streamer.so
    .elf linux x86
  • samp-npc.exe
    .exe windows x86


    Headers

    Sections

  • samp-server.exe
    .exe windows x86

    0eed331a13471baad6960f2d6a40f2de


    Headers

    Imports

    Sections

  • samp.ban
  • scriptfiles/BuyAll/Aviacia.ini
  • scriptfiles/BuyAll/Bikes.ini
  • scriptfiles/BuyAll/Bizz.ini
  • scriptfiles/BuyAll/Broneteh.ini
  • scriptfiles/BuyAll/Cars.ini
  • scriptfiles/BuyAll/Dacha.ini
  • scriptfiles/BuyAll/Houses.ini
  • scriptfiles/BuyAll/Jeep.ini
  • scriptfiles/BuyAll/Klasscarsx.ini
  • scriptfiles/BuyAll/Lodka.ini
  • scriptfiles/BuyAll/Samolet.ini
  • scriptfiles/BuyAll/Skuter.ini
  • scriptfiles/BuyAll/Sportbike.ini
  • scriptfiles/BuyAll/Sportcar.ini
  • scriptfiles/BuyAll/Sportjeep.ini
  • scriptfiles/BuyAll/Truck.ini
  • scriptfiles/BuyAll/Vell.ini
  • scriptfiles/BuyAll/Vertolet.ini
  • scriptfiles/Jobs/Players/volna.ini
  • scriptfiles/Races/Check0.txt
  • scriptfiles/Races/Check1.txt
  • scriptfiles/Races/Check10.txt
  • scriptfiles/Races/Check11.txt
  • scriptfiles/Races/Check12.txt
  • scriptfiles/Races/Check13.txt
  • scriptfiles/Races/Check14.txt
  • scriptfiles/Races/Check15.txt
  • scriptfiles/Races/Check2.txt
  • scriptfiles/Races/Check3.txt
  • scriptfiles/Races/Check4.txt
  • scriptfiles/Races/Check5.txt
  • scriptfiles/Races/Check6.txt
  • scriptfiles/Races/Check7.txt
  • scriptfiles/Races/Check8.txt
  • scriptfiles/Races/Check9.txt
  • scriptfiles/Races/Race0.txt
  • scriptfiles/Races/Race1.txt
  • scriptfiles/Races/Race10.txt
  • scriptfiles/Races/Race11.txt
  • scriptfiles/Races/Race12.txt
  • scriptfiles/Races/Race13.txt
  • scriptfiles/Races/Race14.txt
  • scriptfiles/Races/Race15.txt
  • scriptfiles/Races/Race2.txt
  • scriptfiles/Races/Race3.txt
  • scriptfiles/Races/Race4.txt
  • scriptfiles/Races/Race5.txt
  • scriptfiles/Races/Race6.txt
  • scriptfiles/Races/Race7.txt
  • scriptfiles/Races/Race8.txt
  • scriptfiles/Races/Race9.txt
  • scriptfiles/SQlite/Users.db
  • scriptfiles/ladmin/config/Config.ini
  • scriptfiles/ladmin/config/ForbiddenNames.cfg
  • scriptfiles/ladmin/config/aka.txt
  • scriptfiles/ladmin/logs/AdminLog.txt
  • scriptfiles/ladmin/logs/BanLog.txt
  • scriptfiles/ladmin/logs/CarSpawns.txt
  • scriptfiles/ladmin/logs/KickLog.txt
  • scriptfiles/ladmin/logs/Objects.txt
    .vbs
  • scriptfiles/ladmin/logs/ReportLog.txt
  • scriptfiles/ladmin/logs/TempAdminLog.txt
  • scriptfiles/ladmin/users/.sav
  • scriptfiles/ladmin/users/Lexa_00Ivanov.sav
  • scriptfiles/ladmin/users/Shustov_08Vlad.sav
  • scriptfiles/ladmin/users/ZlaYa_18BeLo_054_06Ka_18_08JoD.sav
  • scriptfiles/ladmin/users/_00_18Belo_054_06ka_18_00.sav
  • scriptfiles/ladmin/users/lololosha.sav
  • scriptfiles/ladmin/users/melon.sav
  • scriptfiles/ladmin/users/volna.sav
  • scriptfiles/wedding/volna.ini
  • server.cfg
  •  /pawno/Thumbs.db
  •  /pawno/include.rar
    .rar
  •  /pawno/include/AntiMoneyCheat.inc
  •  /pawno/include/Dini.inc
  •  /pawno/include/FCNPC.inc
  •  /pawno/include/GetVehicleColor.inc
  •  /pawno/include/JunkBuster.inc
  •  /pawno/include/JunkBusterFS.inc
  •  /pawno/include/KryptoMoneyHack.inc
  •  /pawno/include/LSR.inc
  •  /pawno/include/Life-Guard/Life-Guard_v4.1.inc
  •  /pawno/include/Life-Guard/foreach.inc
  •  /pawno/include/Life-Guard/reader.inc
  •  /pawno/include/Life-Guard/stock.inc
  •  /pawno/include/Life-Guard_v2.0.inc
  •  /pawno/include/Life-Guard_v3.0.inc
  •  /pawno/include/Life-Guard_v4.1.inc
  •  /pawno/include/SQlite.inc
  •  /pawno/include/SerialBan.inc
  •  /pawno/include/SpikeStrip.inc
  •  /pawno/include/a_deamx.inc
  •  /pawno/include/a_http.inc
  •  /pawno/include/a_mail.inc
  •  /pawno/include/a_npc.inc
  •  /pawno/include/a_objects.inc
    .vbs
  •  /pawno/include/a_players.inc
  •  /pawno/include/a_samp.inc
  •  /pawno/include/a_sampdb.inc
  •  /pawno/include/a_vehicles.inc
  •  /pawno/include/aa_dakotainclud1.inc
  •  /pawno/include/antiattack.inc
    .vbs
  •  /pawno/include/cnpc.inc
  •  /pawno/include/cnpc_controller.inc
  •  /pawno/include/cnpc_paths.inc
  •  /pawno/include/core.inc
  •  /pawno/include/d_antiairbrk.inc
  •  /pawno/include/datagram.inc
  •  /pawno/include/dopincadm.inc
  •  /pawno/include/dopinclud.inc
  •  /pawno/include/dudb.inc
  •  /pawno/include/dutils.inc
  •  /pawno/include/file.inc
  •  /pawno/include/fixes2.inc
  •  /pawno/include/float.inc
  •  /pawno/include/foreach.inc
  •  /pawno/include/gang.inc
  •  /pawno/include/gl_common.inc
  •  /pawno/include/lethaldudb2.inc
  •  /pawno/include/mSelection.inc
  •  /pawno/include/md5.inc
  •  /pawno/include/modelsizes.inc
  •  /pawno/include/morphinc.inc
  •  /pawno/include/mxINI.inc
  •  /pawno/include/mxINI05.inc
  •  /pawno/include/mxdate.inc
  •  /pawno/include/physics.inc
  •  /pawno/include/progressbar.inc
  •  /pawno/include/reader.inc
  •  /pawno/include/socket.inc
  •  /pawno/include/sscanf2.inc
  •  /pawno/include/stock.inc
  •  /pawno/include/streamer.inc
  •  /pawno/include/string.inc
  •  /pawno/include/time.inc
  •  /pawno/include/utils.inc
  •  /pawno/include/xadmin/DFiles.inc
  •  /pawno/include/xadmin/XRegistration.inc
  •  /pawno/include/xadmin/XtremeAdmin.inc
  •  /pawno/include/zcmd.inc
  •  /pawno/include//a_samp.inc
  •  /pawno/libpawnc.dll
    .dll windows x86

    5d97e0c7cc1b418f5235da489d10a039


    Headers

    Imports

    Exports

    Sections

  •  /pawno/new.pwn
  •  /pawno/pawn.ico
  •  /pawno/pawncc.exe
    .exe windows x86

    f9d74702f53af8e6e0298f886652b43b


    Headers

    Imports

    Sections

  •  /pawno/pawno.exe
    .exe windows x86


    Headers

    Sections

  •  /pawno/settings.ini
  •  /pawno/streamer.inc