Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

03/05/2024, 22:21

240503-19156aag47 8

03/05/2024, 22:17

240503-17b39aff9x 8

General

  • Target

    LDPlayer9_ens_1252_ld.exe

  • Size

    12.3MB

  • Sample

    240503-17b39aff9x

  • MD5

    53267fb7397aef58b1025636f8eed6b8

  • SHA1

    bc2e7965b2a5d10de452dd590ffef7328b48e1bf

  • SHA256

    815165ed2cfb5dee2b8c061f6436366b9d72e464dcc83db9c3c036475a875d5e

  • SHA512

    bd966609dc941d64bb379913a8258f2c8b9712e76c8ea5a4c5f842aa86714c1a39d918b71f170491c08e40ffe6f6fe236a7cd025b93902b75080adb43056af9f

  • SSDEEP

    393216:P9JRaxbxp41TXj2w5311sHznZc+TEI4gw:1ibxWT6w5AbZbTNC

Malware Config

Targets

    • Target

      LDPlayer9_ens_1252_ld.exe

    • Size

      12.3MB

    • MD5

      53267fb7397aef58b1025636f8eed6b8

    • SHA1

      bc2e7965b2a5d10de452dd590ffef7328b48e1bf

    • SHA256

      815165ed2cfb5dee2b8c061f6436366b9d72e464dcc83db9c3c036475a875d5e

    • SHA512

      bd966609dc941d64bb379913a8258f2c8b9712e76c8ea5a4c5f842aa86714c1a39d918b71f170491c08e40ffe6f6fe236a7cd025b93902b75080adb43056af9f

    • SSDEEP

      393216:P9JRaxbxp41TXj2w5311sHznZc+TEI4gw:1ibxWT6w5AbZbTNC

    • Creates new service(s)

    • Manipulates Digital Signatures

      Attackers can apply techniques such as changing the registry keys of authenticode & Cryptography to obtain their binary as valid.

    • Possible privilege escalation attempt

    • Modifies file permissions

MITRE ATT&CK Enterprise v15

Tasks