General

  • Target

    LDPlayer.exe

  • Size

    543.3MB

  • Sample

    240224-v51e6sad7w

  • MD5

    07286e4212683b95501ee041a5edc2d5

  • SHA1

    7bfa79895cb0fb9e9684d87dd97d8252d7949806

  • SHA256

    021c834f2a632a3820d2d05aeda6fe56f86bc23c37792ddd62e36951f68e69d2

  • SHA512

    edfe300a1d97b5437f7149197bb3e6d1362bdd8e948a4934a3b45b640ceac5cca1a42ccebf04a6ae22b3003df536f85efb25e6b89e506f021e2c7eb1e735fe12

  • SSDEEP

    12582912:n+pnsVQCphrsPHmGJUhFW/u5H9g4uqkJGcC+pPzqfW99SyBUv:+5saCphrsPmGuO5/JGgpPz/nA

Malware Config

Targets

    • Target

      LDPlayer.exe

    • Size

      543.3MB

    • MD5

      07286e4212683b95501ee041a5edc2d5

    • SHA1

      7bfa79895cb0fb9e9684d87dd97d8252d7949806

    • SHA256

      021c834f2a632a3820d2d05aeda6fe56f86bc23c37792ddd62e36951f68e69d2

    • SHA512

      edfe300a1d97b5437f7149197bb3e6d1362bdd8e948a4934a3b45b640ceac5cca1a42ccebf04a6ae22b3003df536f85efb25e6b89e506f021e2c7eb1e735fe12

    • SSDEEP

      12582912:n+pnsVQCphrsPHmGJUhFW/u5H9g4uqkJGcC+pPzqfW99SyBUv:+5saCphrsPmGuO5/JGgpPz/nA

    • Creates new service(s)

    • Manipulates Digital Signatures

      Attackers can apply techniques such as changing the registry keys of authenticode & Cryptography to obtain their binary as valid.

    • Possible privilege escalation attempt

    • Modifies file permissions

MITRE ATT&CK Enterprise v15

Tasks