Overview

overview

6

Static

static

1

xnafx40_redist.msi

windows11-21h2-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    xnafx40_redist.msi

  • Size

    6.7MB

  • Sample

    240705-pyrlss1dmb

  • MD5

    ff1c0202ab7147c9dfd34b582f1da13f

  • SHA1

    5fc95a9ad87a38e71a953af116fd1f1cbe46a3e7

  • SHA256

    47260420773a20443fb1e38a89b7f39c5237a80a842de598e6c8f7f90a3bbd6d

  • SHA512

    9a233fd33fa535d0783ac4a97108166b860d7647998ce184e6e5103200a6c8522a5e4d035b85e02280f5176c092e0d3e61a60f228d7ca17f09fcf2fc5cdf5253

  • SSDEEP

    98304:synfL329J1XswfXO6wiBB+4RZg6aENaCZAU5PMO0MntfERyJGH2YPq/:sYD3C1XXfzH+4cLHU5PM/Mnt+YGlq

Score
6/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      xnafx40_redist.msi

    • Size

      6.7MB

    • MD5

      ff1c0202ab7147c9dfd34b582f1da13f

    • SHA1

      5fc95a9ad87a38e71a953af116fd1f1cbe46a3e7

    • SHA256

      47260420773a20443fb1e38a89b7f39c5237a80a842de598e6c8f7f90a3bbd6d

    • SHA512

      9a233fd33fa535d0783ac4a97108166b860d7647998ce184e6e5103200a6c8522a5e4d035b85e02280f5176c092e0d3e61a60f228d7ca17f09fcf2fc5cdf5253

    • SSDEEP

      98304:synfL329J1XswfXO6wiBB+4RZg6aENaCZAU5PMO0MntfERyJGH2YPq/:sYD3C1XXfzH+4cLHU5PM/Mnt+YGlq

    Score
    6/10
    persistenceprivilege_escalation

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks