Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

LDPlayer4_...ld.exe

windows7-x64

LDPlayer4_...ld.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    LDPlayer4_es_1405_ld.exe

  • Size

    2.9MB

  • Sample

    230530-w9hxcsbb62

  • MD5

    5fe7a3b9c7057fc176c37baad18fc8b0

  • SHA1

    f71bcae8d2d06a06e441ba5f4463bb2c83610733

  • SHA256

    27d122e42537bc5f67ef394c429a510093b240c5499968ee558f406c6373db42

  • SHA512

    237805725dba381eca211b35d263720f02376572b2d0f44055213c7baa366445d79ff30062c2682327973809ab34e0de39e83a2541769502af017ee4d23e4550

  • SSDEEP

    49152:4Zg3BIpaMOuzU3aD1jqVOOIkx0OcltGbYhtEoZ:4+3+pa9uzU21OVOOIk2OcmEh3

Score
8/10
discoveryevasionexploitpersistence

Malware Config

Targets

    • Target

      LDPlayer4_es_1405_ld.exe

    • Size

      2.9MB

    • MD5

      5fe7a3b9c7057fc176c37baad18fc8b0

    • SHA1

      f71bcae8d2d06a06e441ba5f4463bb2c83610733

    • SHA256

      27d122e42537bc5f67ef394c429a510093b240c5499968ee558f406c6373db42

    • SHA512

      237805725dba381eca211b35d263720f02376572b2d0f44055213c7baa366445d79ff30062c2682327973809ab34e0de39e83a2541769502af017ee4d23e4550

    • SSDEEP

      49152:4Zg3BIpaMOuzU3aD1jqVOOIkx0OcltGbYhtEoZ:4+3+pa9uzU21OVOOIk2OcmEh3

    Score
    8/10
    discoveryevasionexploitpersistence

    • Creates new service(s)

      persistence

    • Downloads MZ/PE file

    • Possible privilege escalation attempt

      exploit

    • Stops running service(s)

      evasion

    • Modifies file permissions

      discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks