General

  • Target

    LDPlayer_9.0.66.3.exe

  • Size

    652.0MB

  • Sample

    240225-vxajsagg98

  • MD5

    443e4281ac364c647109557995e0facc

  • SHA1

    1b55ecba28da03d40c68080853799a16922ba5b1

  • SHA256

    752d952260fe13a1f8dfaf75f6463efbe8f9aa66fa5f46e6b98add5790aa9787

  • SHA512

    5405d8791a7f764f35016cb09d575f8ff5f8b8cf6ce5b888e228612be57e0fd111a54ab8f64fc76e86f25e685f544a282a3b820d8502358dd50956f68b2ceb91

  • SSDEEP

    12582912:ZbIjCC/+e6Qjo65Vo70B0iPWJvoxF6ohfsKlUxFXcuqzMh:ttCCKVomGhCzlYeAh

Malware Config

Targets

    • Target

      LDPlayer_9.0.66.3.exe

    • Size

      652.0MB

    • MD5

      443e4281ac364c647109557995e0facc

    • SHA1

      1b55ecba28da03d40c68080853799a16922ba5b1

    • SHA256

      752d952260fe13a1f8dfaf75f6463efbe8f9aa66fa5f46e6b98add5790aa9787

    • SHA512

      5405d8791a7f764f35016cb09d575f8ff5f8b8cf6ce5b888e228612be57e0fd111a54ab8f64fc76e86f25e685f544a282a3b820d8502358dd50956f68b2ceb91

    • SSDEEP

      12582912:ZbIjCC/+e6Qjo65Vo70B0iPWJvoxF6ohfsKlUxFXcuqzMh:ttCCKVomGhCzlYeAh

    • Creates new service(s)

    • Manipulates Digital Signatures

      Attackers can apply techniques such as changing the registry keys of authenticode & Cryptography to obtain their binary as valid.

    • Possible privilege escalation attempt

    • Modifies file permissions

MITRE ATT&CK Enterprise v15

Tasks