Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
LDPlayer9_ens_1252_ld.exe
-
Size
12.3MB
-
Sample
240503-17b39aff9x
-
MD5
53267fb7397aef58b1025636f8eed6b8
-
SHA1
bc2e7965b2a5d10de452dd590ffef7328b48e1bf
-
SHA256
815165ed2cfb5dee2b8c061f6436366b9d72e464dcc83db9c3c036475a875d5e
-
SHA512
bd966609dc941d64bb379913a8258f2c8b9712e76c8ea5a4c5f842aa86714c1a39d918b71f170491c08e40ffe6f6fe236a7cd025b93902b75080adb43056af9f
-
SSDEEP
393216:P9JRaxbxp41TXj2w5311sHznZc+TEI4gw:1ibxWT6w5AbZbTNC
Malware Config
Targets
-
-
Target
LDPlayer9_ens_1252_ld.exe
-
Size
12.3MB
-
MD5
53267fb7397aef58b1025636f8eed6b8
-
SHA1
bc2e7965b2a5d10de452dd590ffef7328b48e1bf
-
SHA256
815165ed2cfb5dee2b8c061f6436366b9d72e464dcc83db9c3c036475a875d5e
-
SHA512
bd966609dc941d64bb379913a8258f2c8b9712e76c8ea5a4c5f842aa86714c1a39d918b71f170491c08e40ffe6f6fe236a7cd025b93902b75080adb43056af9f
-
SSDEEP
393216:P9JRaxbxp41TXj2w5311sHznZc+TEI4gw:1ibxWT6w5AbZbTNC
Score8/10-
Creates new service(s)
-
Manipulates Digital Signatures
Attackers can apply techniques such as changing the registry keys of authenticode & Cryptography to obtain their binary as valid.
-
Possible privilege escalation attempt
-
Modifies file permissions
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1