Overview

overview

8

Static

static

1

LDPlayer9_...ld.exe

windows7-x64

8

LDPlayer9_...ld.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    1168s
  • max time network
    1169s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-es
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-eslocale:es-esos:windows10-2004-x64systemwindows
  • submitted
    28-06-2024 18:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LDPlayer9_es_1009_ld.exe

  • Size

    3.4MB

  • MD5

    0d183c971971fe69c6c62b4bbfede0c7

  • SHA1

    0ac34c620f6ab8ec1aa45312bfd54a794ebd7c28

  • SHA256

    5f1ee7eac585adb1a5279041b286b4adff6ff9d29d459ca0dd05bb0d2bfe26d2

  • SHA512

    c1990a97e1d1d1c93256dad443f2bc98739ca18b6e26b77a4810a190b70021aa64b77e33b387e124bc83356a3bdefadd900823f59039a2e50773c991796282fb

  • SSDEEP

    49152:8LF2vxcUuniqfal7nA1pHtOUYqP3CFOrtG/JR9sXafgkDFMVR9C1UhPJXMK701hd:8LF2vFuniqfa21t0xOoGBiCV2HCyh

Score
4/10

Malware Config

Signatures

  • Loads dropped DLL 3 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\LDPlayer9_es_1009_ld.exe
    "C:\Users\Admin\AppData\Local\Temp\LDPlayer9_es_1009_ld.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of AdjustPrivilegeToken
    PID:784

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\Setup\ds.dll
    Filesize

    79KB

    MD5

    d9cb0b4a66458d85470ccf9b3575c0e7

    SHA1

    1572092be5489725cffbabe2f59eba094ee1d8a1

    SHA256

    6ab3fdc4038a86124e6d698620acba3abf9e854702490e245c840c096ee41d05

    SHA512

    94937e77da89181903a260eac5120e8db165f2a3493086523bc5abbe87c4a9da39af3ba1874e3407c52df6ffda29e4947062ba6abe9f05b85c42379c4be2e5e6

    Download Submit
  • memory/784-12-0x00000000069B0000-0x00000000069C0000-memory.dmp
    Filesize

    64KB

    Download
  • memory/784-13-0x00000000728AE000-0x00000000728AF000-memory.dmp
    Filesize

    4KB

    Download
  • memory/784-18-0x0000000073150000-0x0000000073166000-memory.dmp
    Filesize

    88KB

    Download
  • memory/784-17-0x0000000009260000-0x0000000009276000-memory.dmp
    Filesize

    88KB

    Download
  • memory/784-20-0x0000000009850000-0x0000000009DF4000-memory.dmp
    Filesize

    5.6MB

    Download
  • memory/784-21-0x00000000093A0000-0x0000000009432000-memory.dmp
    Filesize

    584KB

    Download
  • memory/784-22-0x00000000069C0000-0x0000000006A00000-memory.dmp
    Filesize

    256KB

    Download
  • memory/784-23-0x000000000A380000-0x000000000A482000-memory.dmp
    Filesize

    1.0MB

    Download
  • memory/784-24-0x00000000069B0000-0x00000000069C0000-memory.dmp
    Filesize

    64KB

    Download