4802ba51c8b2983e7ef20a82db6111e8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4802ba51c8b2983e7ef20a82db6111e8_JaffaCakes118
Size

519KB
MD5

4802ba51c8b2983e7ef20a82db6111e8
SHA1

ed77163601d2197fde1e801d7b5b84f973749369
SHA256

b55ff067b12fe5ac87ada51e1df0abd677f007d88940f1f52608a1ece322a3aa
SHA512

79e931cd966082918ae885d87fea47098d2e3cbed9ef74a63f462ef4c45d6fbd35b0245a92cf12587f64cd3504afc188afb8c9556833ea701288978b94f7c633
SSDEEP

12288:oq0bvmv9T+mI9aW437csIstroy4pznC+swAMosfiaCTPd:oq0zQ9ynGistLUnCWPvaaCDd

Score

7^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/SAMPFUNCS.asi	acprotect

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/SAMPFUNCS.asi	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SAMPFUNCS.asi
unpack002/out.upx

Files

4802ba51c8b2983e7ef20a82db6111e8_JaffaCakes118
.rar
SAMPFUNCS.asi
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

??0BitStream@@QAE@H@Z
??0BitStream@@QAE@PAEI_N@Z
??0BitStream@@QAE@XZ
??0SFCLEO@@QAE@PAVSFPluginInfo@@@Z
??0SFGame@@QAE@PAVSFPluginInfo@@@Z
??0SFPluginInfo@@QAE@ABV0@@Z
??0SFPluginInfo@@QAE@PAUHINSTANCE__@@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0SFRakNet@@QAE@PAVSFPluginInfo@@@Z
??0SFRender@@QAE@PAVSFPluginInfo@@@Z
??0SFSAMP@@QAE@PAVSFPluginInfo@@@Z
??0stCommandInfo@@QAE@ABU0@@Z
??0stCommandInfo@@QAE@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@W4CommandType@0@PAX@Z
??1BitStream@@QAE@XZ
??1SFPluginInfo@@QAE@XZ
??1stCommandInfo@@QAE@XZ
??4BitStream@@QAEAAV0@ABV0@@Z
??4CScriptThread@@QAEAAU0@ABU0@@Z
??4SAMPFUNCS@@QAEAAV0@ABV0@@Z
??4SFCLEO@@QAEAAV0@ABV0@@Z
??4SFGame@@QAEAAV0@ABV0@@Z
??4SFPluginInfo@@QAEAAV0@ABV0@@Z
??4SFRakNet@@QAEAAV0@ABV0@@Z
??4SFRender@@QAEAAV0@ABV0@@Z
??4SFSAMP@@QAEAAV0@ABV0@@Z
??4stChatInfo@@QAEAAU0@ABU0@@Z
??4stCommandInfo@@QAEAAU0@ABU0@@Z
??4stDialogInfo@@QAEAAU0@ABU0@@Z
??4stFontInfo@@QAEAAU0@ABU0@@Z
??4stInputInfo@@QAEAAU0@ABU0@@Z
??4stLocalPlayer@@QAEAAU0@ABU0@@Z
??4stMiscInfo@@QAEAAU0@ABU0@@Z
??4stObjectPool@@QAEAAU0@ABU0@@Z
??4stPickupPool@@QAEAAU0@ABU0@@Z
??4stPlayerPool@@QAEAAU0@ABU0@@Z
??4stSAMP@@QAEAAU0@ABU0@@Z
??4stScoreboardInfo@@QAEAAU0@ABU0@@Z
??4stTextLabelPool@@QAEAAU0@ABU0@@Z
??4stTextdrawPool@@QAEAAU0@ABU0@@Z
??4stVehiclePool@@QAEAAU0@ABU0@@Z
?ARGB_To_A_R_G_B@SFRender@@QAEXKAAE000@Z
?AddBitsAndReallocate@BitStream@@QAEXH@Z
?AddChatMessage@stChatInfo@@QAAXKPBDZZ
?AddChatMessage@stChatInfo@@QAEXW4ChatMessageType@@PBD1KK@Z
?AddClientCommand@stInputInfo@@QAEXPADK@Z
?AlignReadToByteBoundary@BitStream@@QAEXXZ
?AlignWriteToByteBoundary@BitStream@@QAEXXZ
?AssertCopyData@BitStream@@QAEXXZ
?AssertStreamEmpty@BitStream@@QAEXXZ
?Begin@SFRender@@QAEJW4_D3DPRIMITIVETYPE@@@Z
?BeginRender@SFRender@@QAEJXZ
?BindTexture@SFRender@@QAEXPAUIDirect3DTexture9@@@Z
?CanDraw@SFRender@@QAE_NXZ
?Close@stDialogInfo@@QAEXH@Z
?Color@SFRender@@QAEJK@Z
?CopyData@BitStream@@QBEHPAPAE@Z
?Create3DText@stTextLabelPool@@QAEHGPADKQAMM_NGG@Z
?Create3DText@stTextLabelPool@@QAEHGUstTextLabel@@@Z
?Create3DText@stTextLabelPool@@QAEHPADKQAMM_NGG@Z
?Create@stTextdrawPool@@QAEPAUstTextdraw@@GPAUstTextDrawTransmit@@PAD@Z
?CreateNewFont@SFRender@@QAEPAUstFontInfo@@PADHK@Z
?DecodeString@SFRakNet@@QAEXPADHPAVBitStream@@@Z
?Delete@stTextdrawPool@@QAEXG@Z
?Destroy3DText@stTextLabelPool@@QAE_NH@Z
?DisableInput@stInputInfo@@QAEXXZ
?DrawBorderedBox@SFRender@@QAEXHHHHKHK@Z
?DrawBox@SFRender@@QAEXHHHHK@Z
?DrawHeight@stFontInfo@@QBEMXZ
?DrawLength@stFontInfo@@QBEMPBD_N@Z
?DrawLine@SFRender@@QAEXHHHHHK@Z
?DrawPolygon@SFRender@@QAEXHHHHMHK@Z
?DrawTexture@SFRender@@QAEXPAUstTextureInfo@@HHHHMK@Z
?Enable@stScoreboardInfo@@QAEX_N@Z
?EnableInput@stInputInfo@@QAEXXZ
?EncodeString@SFRakNet@@QAEXPBDHPAVBitStream@@@Z
?End@SFRender@@QAEJXZ
?EndRender@SFRender@@QAEJXZ
?ForceSendAimSync@stLocalPlayer@@QAEXXZ
?ForceSendOnfootSync@stLocalPlayer@@QAEXXZ
?ForceSendPassengerSync@stLocalPlayer@@QAEXGE@Z
?ForceSendStatsSync@stLocalPlayer@@QAEXXZ
?ForceSendTrailerSync@stLocalPlayer@@QAEXG@Z
?ForceSendUnoccupiedSync@stLocalPlayer@@QAEXGE@Z
?ForceSendVehicleSync@stLocalPlayer@@QAEXG@Z
?ForceSendWeaponsSync@stLocalPlayer@@QAEXXZ
?FormatString@CScriptThread@@QAEHPADIPBD@Z
?GAME@@3PAVCGame@@A
?Get3DTextInfo@stTextLabelPool@@QAE_NGAAUstTextLabel@@@Z
?GetActorHandleFromSAMPPlayerID@stPlayerPool@@QAEHH@Z
?GetAimData@stPlayerPool@@QAEPAUstAimData@@H@Z
?GetAnimationIDFromName@stSAMP@@QAEFPAD0@Z
?GetAnimationNameFromID@stSAMP@@QAEPADF@Z
?GetCarHandleFromSAMPCarID@stVehiclePool@@QAEHH@Z
?GetCharPos@stFontInfo@@QBEIPBDM_N@Z
?GetChatInputText@stChatInfo@@QAE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?GetCondResult@SFCLEO@@QAE_NXZ
?GetData@BitStream@@QBEPAEXZ
?GetFloat@CScriptThread@@QAEMXZ
?GetGlobalVar@SFCLEO@@QAEKG@Z
?GetInCarData@stPlayerPool@@QAEPAUstInCarData@@H@Z
?GetInputText@stDialogInfo@@QAEPA_WXZ
?GetInt@CScriptThread@@QAEIXZ
?GetLocalVar@SFCLEO@@QAEKG@Z
?GetNumberOfBitsUsed@BitStream@@QBEHXZ
?GetNumberOfBytesUsed@BitStream@@QBEHXZ
?GetNumberOfUnreadBits@BitStream@@QBEHXZ
?GetObjectHandleByID@stObjectPool@@QAEKH@Z
?GetObjectIDByHandle@stObjectPool@@QAEHK@Z
?GetOnFootData@stPlayerPool@@QAEPAUstOnFootData@@H@Z
?GetOperandType@CScriptThread@@QAEHXZ
?GetParams@CScriptThread@@QAEXI@Z
?GetPassengerData@stPlayerPool@@QAEPAUstPassengerData@@H@Z
?GetPickupHandleByID@stPickupPool@@QAEKH@Z
?GetPickupIDByHandle@stPickupPool@@QAEHK@Z
?GetPlayerAnimation@stPlayerPool@@QAEFH@Z
?GetPlayerColor@stPlayerPool@@QAEKH@Z
?GetPlayerName@stPlayerPool@@QAEPBDH@Z
?GetRPCNodeByIndex@stSAMP@@QAEPAURPCNode@@E@Z
?GetReadOffset@BitStream@@QBEHXZ
?GetSAMPPlayerIDFromGTAHandle@stPlayerPool@@QAEHI@Z
?GetSAMPVehicleIDFromGTAHandle@stVehiclePool@@QAEHI@Z
?GetScrollItem@stDialogInfo@@QAEHXZ
?GetTextdraw@stTextdrawPool@@QAEPAUstTextdraw@@G@Z
?GetThreadName@CScriptThread@@QAE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?GetTrailerData@stPlayerPool@@QAEPAUstTrailerData@@H@Z
?GetTransmit@stTextdrawPool@@QAE_NGAAUstTextDrawTransmit@@@Z
?GetWriteOffset@BitStream@@QBEHXZ
?IgnoreBits@BitStream@@QAEXH@Z
?IsExists@stTextdrawPool@@QAE_NG@Z
?IsInitialized@SFSAMP@@QAE_NXZ
?IsObjectExists@stObjectPool@@QAE_NH@Z
?IsParamConstInt@CScriptThread@@QAE_NXZ
?IsPickupExists@stPickupPool@@QAE_NH@Z
?IsPlayerDefined@stPlayerPool@@QAE_NH_N@Z
?IsSettingsValueExists@stMiscInfo@@QAE_NPAD@Z
?JumpAtLabel@CScriptThread@@QAEXI@Z
?ListBoxGetIndex@stDialogInfo@@QAEHXZ
?ListBoxGetItemText@stDialogInfo@@QAEPADH@Z
?ListBoxGetItemsCount@stDialogInfo@@QAEHXZ
?ListBoxSetIndex@stDialogInfo@@QAEXH@Z
?LoadTextureFromFile@SFRender@@QAEPAUstTextureInfo@@PAD@Z
?LoadTextureFromMemory@SFRender@@QAEPAUstTextureInfo@@PBXI@Z
?LoadTextureFromResource@SFRender@@QAEPAUstTextureInfo@@HK@Z
?Log@SAMPFUNCS@@QAAXPBDZZ
?Log@SAMPFUNCS@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?LogConsole@SAMPFUNCS@@QAAXPBDZZ
?LogFile@SAMPFUNCS@@QAAXPBDZZ
?PEDSELF@@3PAVCPed@@A
?Print@stFontInfo@@QAEJPBDKMM_N1U?$rect@M@@@Z
?PrintShadow@stFontInfo@@QAEJPBDKMM_N1U?$rect@M@@@Z
?ProcessInput@stInputInfo@@QAEXXZ
?Read@BitStream@@QAE_NAA_N@Z
?Read@BitStream@@QAE_NPADH@Z
?ReadAlignedBytes@BitStream@@QAE_NPAEH@Z
?ReadBit@BitStream@@QAE_NXZ
?ReadBits@BitStream@@QAE_NPAEH_N@Z
?ReadCompressed@BitStream@@AAE_NPAEH_N@Z
?ReadSettingsValue@stMiscInfo@@QAEHPAD@Z
?ReadString@CScriptThread@@QAEPADPADI@Z
?ReleaseFont@SFRender@@QAE_NPAUstFontInfo@@@Z
?ReleaseTexture@SFRender@@QAE_NPAUstTextureInfo@@@Z
?RequestClass@stLocalPlayer@@QAEXH@Z
?Reset@BitStream@@QAEXXZ
?Reset@CScriptThread@@QAEXXZ
?ResetReadPointer@BitStream@@QAEXXZ
?ResetWritePointer@BitStream@@QAEXXZ
?RestartGame@stSAMP@@QAEXXZ
?RetreiveUnreadParams@CScriptThread@@QAE?AV?$vector@TSCRIPT_VAR@@V?$allocator@TSCRIPT_VAR@@@std@@@std@@XZ
?ReverseBytes@BitStream@@AAEXPAE0H@Z
?Say@stLocalPlayer@@QAEXPAD@Z
?SendDeath@stLocalPlayer@@QAEXXZ
?SendPacket@SFRakNet@@QAE_NPAVBitStream@@W4PacketPriority@@W4PacketReliability@@D@Z
?SendRPC@SFRakNet@@QAE_NHPAVBitStream@@W4PacketPriority@@W4PacketReliability@@D_N@Z
?Serialize@BitStream@@QAE_N_NPADH@Z
?SerializeBits@BitStream@@QAE_N_NPAEH_N@Z
?SetChatInputText@stChatInfo@@QAEXPAD@Z
?SetCondResult@CScriptThread@@QAEX_N@Z
?SetData@BitStream@@QAEXPAE@Z
?SetDisplayMode@stChatInfo@@QAEXH@Z
?SetFloat@CScriptThread@@QAEXM@Z
?SetGlobalVar@SFCLEO@@QAEXGK@Z
?SetInputText@stDialogInfo@@QAEXPAD@Z
?SetInt@CScriptThread@@QAEXI@Z
?SetLocalPlayerName@stPlayerPool@@QAEHPBD@Z
?SetLocalVar@SFCLEO@@QAEXGK@Z
?SetLocalVar@SFCLEO@@QAEXGM@Z
?SetNumberOfBitsAllocated@BitStream@@QAEXI@Z
?SetParams@CScriptThread@@QAEXI@Z
?SetPlayerColor@stPlayerPool@@QAE_NHK@Z
?SetReadOffset@BitStream@@QAEXH@Z
?SetRenderState@SFRender@@QAEXW4_D3DRENDERSTATETYPE@@K@Z
?SetScrollItem@stDialogInfo@@QAEXH@Z
?SetSpecialAction@stLocalPlayer@@QAEXE@Z
?SetWriteOffset@BitStream@@QAEXH@Z
?ShowDialog@stDialogInfo@@QAEXGHPAD000@Z
?SkipParams@CScriptThread@@QAEXI@Z
?SkipUnusedParams@CScriptThread@@QAEXXZ
?Spawn@stLocalPlayer@@QAEXXZ
?TexCoord@SFRender@@QAEXMM@Z
?ToggleCursor@stMiscInfo@@QAEXH_N@Z
?ToggleCursor@stMiscInfo@@QAEX_N@Z
?UnregisterClientCommand@stInputInfo@@QAE_NPAD@Z
?UpdateScoreAndPing@stSAMP@@QAEXXZ
?Vertex@SFRender@@QAEJMM@Z
?Write0@BitStream@@QAEXXZ
?Write1@BitStream@@QAEXXZ
?Write@BitStream@@QAEXPAV1@@Z
?Write@BitStream@@QAEXPAV1@H@Z
?Write@BitStream@@QAEXPBDH@Z
?Write@BitStream@@QAEX_N@Z
?WriteAlignedBytes@BitStream@@QAEXPBEH@Z
?WriteBits@BitStream@@QAEXPBEH_N@Z
?WriteCompressed@BitStream@@AAEXPBEH_N@Z
?WriteSettingsValue@stMiscInfo@@QAEHPADH@Z
?WriteString@CScriptThread@@QAEXPAD@Z
?actorInfoGet@SFGame@@QAEPAUactor_info@@HH@Z
?callOpcode@SFCLEO@@QAA_NPAUCScriptThread@@PBDZZ
?callOpcode@SFCLEO@@QAA_NPBDZZ
?convert3DCoordsToScreen@SFGame@@QAEXMMMPAM0@Z
?convertGameCoordsToWindow@SFGame@@QAEXMMPAM0@Z
?convertScreenCoordsTo3D@SFGame@@QAEXMMMPAM00@Z
?convertWindowCoordsToGame@SFGame@@QAEXMMPAM0@Z
?createHook@SFGame@@QAEPAXPAX0HI@Z
?disconnect@SFSAMP@@QAEXH@Z
?emulateGTAKey@SFGame@@QAEXHH@Z
?emulateRecvPacket@SFRakNet@@QAEXHPAVBitStream@@@Z
?emulateRecvRPC@SFRakNet@@QAEXHPAVBitStream@@@Z
?execConsoleCommand@SAMPFUNCS@@QAEXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?executeThreadOnce@SFCLEO@@QAEHPAUCScriptThread@@@Z
?executeThreadTillReturn@SFCLEO@@QAEHPAUCScriptThread@@@Z
?getAPIVersion@SAMPFUNCS@@QAEIXZ
?getActorPoolSize@SFGame@@QAEIXZ
?getCLEO@SAMPFUNCS@@QAEPAVSFCLEO@@XZ
?getChat@SFSAMP@@QAEPAUstChatInfo@@XZ
?getChatCommands@SAMPFUNCS@@QAE?AV?$vector@UstCommandInfo@@V?$allocator@UstCommandInfo@@@std@@@std@@XZ
?getConsoleCommands@SAMPFUNCS@@QAE?AV?$vector@UstCommandInfo@@V?$allocator@UstCommandInfo@@@std@@@std@@XZ
?getCurrentState@SFGame@@QAE?AW4eCheatStates@@XZ
?getCursorPos@SFGame@@QAE?AUtagPOINT@@XZ
?getD3DDevice@SFRender@@QAEPAUIDirect3DDevice9@@XZ
?getDeathList@SFSAMP@@QAEPAUstKillInfo@@XZ
?getDialog@SFSAMP@@QAEPAUstDialogInfo@@XZ
?getGame@SAMPFUNCS@@QAEPAVSFGame@@XZ
?getInfo@SFSAMP@@QAEPAUstSAMP@@XZ
?getInput@SFSAMP@@QAEPAUstInputInfo@@XZ
?getMisc@SFSAMP@@QAEPAUstMiscInfo@@XZ
?getOrigD3DDevice@SFRender@@QAEPAUIDirect3DDevice9@@XZ
?getOrthMatrix@SFGame@@QAEXMMMMMMMMMPAM000@Z
?getPacketName@SFRakNet@@QAEPBDH@Z
?getPlayers@SFSAMP@@QAEPAUstPlayerPool@@XZ
?getPluginHandle@SFPluginInfo@@QAEPAUHINSTANCE__@@XZ
?getPluginInfo@SFCLEO@@QAEPAVSFPluginInfo@@XZ
?getPluginInfo@SFGame@@QAEPAVSFPluginInfo@@XZ
?getPluginInfo@SFRakNet@@QAEPAVSFPluginInfo@@XZ
?getPluginInfo@SFRender@@QAEPAVSFPluginInfo@@XZ
?getPluginInfo@SFSAMP@@QAEPAVSFPluginInfo@@XZ
?getPluginName@SFPluginInfo@@QAE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?getPresentationParameters@SFRender@@QAEPAU_D3DPRESENT_PARAMETERS_@@XZ
?getRPCName@SFRakNet@@QAEPBDH@Z
?getRakClient@SFRakNet@@QAEPAVRakClientInterface@@XZ
?getRakNet@SAMPFUNCS@@QAEPAVSFRakNet@@XZ
?getRender@SAMPFUNCS@@QAEPAVSFRender@@XZ
?getSAMP@SAMPFUNCS@@QAEPAVSFSAMP@@XZ
?getSAMPAddr@SFSAMP@@QAEKXZ
?getSFVersion@SAMPFUNCS@@QAEIXZ
?getScoreboard@SFSAMP@@QAEPAUstScoreboardInfo@@XZ
?getScreenResolution@SFGame@@QAEXPAH0@Z
?getStreamedOutInfo@SFSAMP@@QAEPAUstStreamedOutPlayerInfo@@XZ
?getVehiclePoolSize@SFGame@@QAEIXZ
?getVehicles@SFSAMP@@QAEPAUstVehiclePool@@XZ
?initPlugin@SAMPFUNCS@@QAE_NP6GXXZPAUHINSTANCE__@@@Z
?isConsoleOpened@SAMPFUNCS@@QAE_NXZ
?isGTAForeground@SFGame@@QAE_NXZ
?isGTAMenuActive@SFGame@@QAE_NXZ
?isKeyDown@SFGame@@QAE_NE@Z
?isKeyPressed@SFGame@@QAE_NE@Z
?isPluginLoaded@SAMPFUNCS@@QAE_NV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?loadPlugin@SAMPFUNCS@@QAEXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?makeOrthMatrix@SFGame@@QAEXMMMMPAM00000000@Z
?registerChatCommand@SFSAMP@@QAE_NV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@P6GX0@Z@Z
?registerConsoleCommand@SAMPFUNCS@@QAEXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@P6GX0@Z@Z
?registerD3DCallback@SFRender@@QAEXW4eDirect3DDeviceMethods@@PAX@Z
?registerDialogCallback@SFSAMP@@QAE_NP6GXHHHPBD@Z@Z
?registerGameDestructorCallback@SFGame@@QAEXP6GXXZ@Z
?registerNewOpcode@SFCLEO@@QAEXGP6GHPAUCScriptThread@@@Z@Z
?registerRCICallback@SFRakNet@@QAEXW4RakClientInterfaceFunctionsEnum@@PAX@Z
?registerRakNetCallback@SFRakNet@@QAEXW4RakNetScriptHookType@@P6G_NPAUstRakNetHookParams@@@Z@Z
?registerWndProcCallback@SFGame@@QAEXW4WndProcCallbackPriority@1@P6G_NPAUHWND__@@IIJ@Z@Z
?requestClass@SFSAMP@@QAEXH@Z
?sendClickPlayer@SFSAMP@@QAEXGE@Z
?sendClickTextDraw@SFSAMP@@QAEXG@Z
?sendDamageVehicle@SFSAMP@@QAEXGKKEE@Z
?sendDialogResponse@SFSAMP@@QAEXGEGPAD@Z
?sendEditAttachedObject@SFSAMP@@QAEXHHHHMMMMMMMMM@Z
?sendEditObject@SFSAMP@@QAEX_NGHMMMMMM@Z
?sendEnterVehicle@SFSAMP@@QAEXHH@Z
?sendExitVehicle@SFSAMP@@QAEXH@Z
?sendGiveDamage@SFSAMP@@QAEXGMHH@Z
?sendInteriorChange@SFSAMP@@QAEXE@Z
?sendMenuQuit@SFSAMP@@QAEXXZ
?sendMenuSelect@SFSAMP@@QAEXE@Z
?sendPickedUpPickup@SFSAMP@@QAEXH@Z
?sendRCONCommand@SFSAMP@@QAEXPAD@Z
?sendRequestSpawn@SFSAMP@@QAEXXZ
?sendSCMEvent@SFSAMP@@QAEXHHHH@Z
?sendSpawn@SFSAMP@@QAEXXZ
?sendTakeDamage@SFSAMP@@QAEXGMHH@Z
?sendVehicleDestroyed@SFSAMP@@QAEXG@Z
?sendWastedNotification@SFSAMP@@QAEXEG@Z
?setChatCommandDescription@SFSAMP@@QAEXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?setConsoleCommandDescription@SAMPFUNCS@@QAEXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?setSendRate@SFSAMP@@QAEXW4eSendrateType@@H@Z
?takeScreenShot@SFSAMP@@QAEXXZ
?unloadPlugin@SAMPFUNCS@@QAEXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?unregisterConsoleCommand@SAMPFUNCS@@QAEXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?vehicleInfoGet@SFGame@@QAEPAUvehicle_info@@HH@Z
GetGameInterface

Sections

UPX0
Size: - Virtual size: 1.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 522KB - Virtual size: 524KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 893KB - Virtual size: 892KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 262KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512KB - Virtual size: 512KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 1.5MB

UPX1 Size: 522KB - Virtual size: 524KB

.rsrc Size: 17KB - Virtual size: 20KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 893KB - Virtual size: 892KB

.rdata Size: 252KB - Virtual size: 252KB

.data Size: 35KB - Virtual size: 262KB

.rsrc Size: 512KB - Virtual size: 512KB

.reloc Size: 73KB - Virtual size: 73KB

UPX0
Size: - Virtual size: 1.5MB

UPX1
Size: 522KB - Virtual size: 524KB

.rsrc
Size: 17KB - Virtual size: 20KB

.text
Size: 893KB - Virtual size: 892KB

.rdata
Size: 252KB - Virtual size: 252KB

.data
Size: 35KB - Virtual size: 262KB

.rsrc
Size: 512KB - Virtual size: 512KB

.reloc
Size: 73KB - Virtual size: 73KB