General
-
Target
LDPlayer_9.0.66.3.exe
-
Size
652.0MB
-
Sample
240225-vxajsagg98
-
MD5
443e4281ac364c647109557995e0facc
-
SHA1
1b55ecba28da03d40c68080853799a16922ba5b1
-
SHA256
752d952260fe13a1f8dfaf75f6463efbe8f9aa66fa5f46e6b98add5790aa9787
-
SHA512
5405d8791a7f764f35016cb09d575f8ff5f8b8cf6ce5b888e228612be57e0fd111a54ab8f64fc76e86f25e685f544a282a3b820d8502358dd50956f68b2ceb91
-
SSDEEP
12582912:ZbIjCC/+e6Qjo65Vo70B0iPWJvoxF6ohfsKlUxFXcuqzMh:ttCCKVomGhCzlYeAh
Static task
static1
Behavioral task
behavioral1
Sample
LDPlayer_9.0.66.3.exe
Resource
win11-20240221-en
Malware Config
Targets
-
-
Target
LDPlayer_9.0.66.3.exe
-
Size
652.0MB
-
MD5
443e4281ac364c647109557995e0facc
-
SHA1
1b55ecba28da03d40c68080853799a16922ba5b1
-
SHA256
752d952260fe13a1f8dfaf75f6463efbe8f9aa66fa5f46e6b98add5790aa9787
-
SHA512
5405d8791a7f764f35016cb09d575f8ff5f8b8cf6ce5b888e228612be57e0fd111a54ab8f64fc76e86f25e685f544a282a3b820d8502358dd50956f68b2ceb91
-
SSDEEP
12582912:ZbIjCC/+e6Qjo65Vo70B0iPWJvoxF6ohfsKlUxFXcuqzMh:ttCCKVomGhCzlYeAh
Score8/10-
Creates new service(s)
-
Manipulates Digital Signatures
Attackers can apply techniques such as changing the registry keys of authenticode & Cryptography to obtain their binary as valid.
-
Possible privilege escalation attempt
-
Modifies file permissions
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1