General

  • Target

    9f9dd326e63c80a4a44f3adb4d33ca68_JaffaCakes118

  • Size

    689KB

  • MD5

    9f9dd326e63c80a4a44f3adb4d33ca68

  • SHA1

    6992f55f19ef1f4bf32bbd06adf09251c97ec29a

  • SHA256

    bce4885c52f492c6a19a880c0c832a47732f0d3c23befe79420e80764f99f809

  • SHA512

    c4e044accd4d8d7e0f5d41d1d0ef493a660d6c05afc157e0b93df4f5879cc6aae71efa44b81d4be554fd3bddb9c7e7e085f5c48f4deb305a6863095a4de3066f

  • SSDEEP

    12288:HWSZOcSR5GrrkWTelQXpHnWR53ll9saU1bxcpoQAFrlrYecUE1cx:HWAOZFMnW7l0aUhQdzRa

Score
3/10

Malware Config

Signatures

  • Unsigned PE 6 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • 9f9dd326e63c80a4a44f3adb4d33ca68_JaffaCakes118
    .rar
  • mod_sa.v4.4.1.3.SA-MP.v0.3.7.R1.Setup.exe
    .exe windows:4 windows x86 arch:x86

    4f67aeda01a0484282e8c59006b0b352


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/bassmod.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • $PLUGINSDIR/brandingurl.dll
    .dll windows:4 windows x86 arch:x86

    135de77644e2add2fd9dd8176740e7e0


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/dumplog.dll
    .dll windows:4 windows x86 arch:x86

    db09deaefe977cb28b3feeb04f93d8a6


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/dxwebsetup.exe
    .exe windows:5 windows x86 arch:x86

    1494de9b53e05fc1f40cb92afbdd6ce4


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/music.mod
  • d3d9.dll
    .dll windows:5 windows x86 arch:x86

    93dc379681d66f8b81708f95dfbe41c4


    Headers

    Imports

    Exports

    Sections

  • data/HANDLING.two
  • data/SHOPPING.two
  • data/VEHICLES.two
  • data/carmods.two
  • data/default.two
  • data/surface.two
  • data/timecyc.two
  • mod_sa/mod_sa.ini
  • mod_sa/mod_sa.raw
  • mod_sa/needle.png
    .png
  • mod_sa/speedo.png
    .png