netsupport | ed8692011421fdd2560ade9a0812c1ec0f11e48e8781ba0c9fd11d4f169d0c32 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

winprofile

windows7-x64

winprofile

windows10-1703-x64

Sharing

General

Target

ed8692011421fdd2560ade9a0812c1ec0f11e48e8781ba0c9fd11d4f169d0c32
Size

2.5MB
Sample

221223-fe484sba8s
MD5

e8ba3cd3e42a1fcab093ff7a6deb796b
SHA1

f0da57a878afcf71fdbf26042f33821fbd139d6c
SHA256

ed8692011421fdd2560ade9a0812c1ec0f11e48e8781ba0c9fd11d4f169d0c32
SHA512

ab43521b7ea1b766405bdb65af97152281dc76063e6aba3c18fbd9ce2c70e48d4c31441a391a1ad9f6e86160d2caa7af7256c8a3dbf7ae0348822ac892ef5c7d
SSDEEP

49152:qeRvnwK61a7hg/WdK+pgqx8HFF6iKabwS6zbv6rijnw3MAmkphUKO+q27XoS:qeRvnJ61a9guhV6HFF6UwSM6rirwGkph

Score

10^/10

netsupport rat

Static task

static1

Behavioral task

behavioral1

Sample

ed8692011421fdd2560ade9a0812c1ec0f11e48e8781ba0c9fd11d4f169d0c32.exe

Resource

win7-20221111-en

windows7-x64

9 signatures

300 seconds

Behavioral task

behavioral2

Sample

ed8692011421fdd2560ade9a0812c1ec0f11e48e8781ba0c9fd11d4f169d0c32.exe

Resource

win10-20220812-en

windows10-1703-x64

9 signatures

300 seconds

Malware Config

Targets

- Target
  
  ed8692011421fdd2560ade9a0812c1ec0f11e48e8781ba0c9fd11d4f169d0c32
- Size
  
  2.5MB
- MD5
  
  e8ba3cd3e42a1fcab093ff7a6deb796b
- SHA1
  
  f0da57a878afcf71fdbf26042f33821fbd139d6c
- SHA256
  
  ed8692011421fdd2560ade9a0812c1ec0f11e48e8781ba0c9fd11d4f169d0c32
- SHA512
  
  ab43521b7ea1b766405bdb65af97152281dc76063e6aba3c18fbd9ce2c70e48d4c31441a391a1ad9f6e86160d2caa7af7256c8a3dbf7ae0348822ac892ef5c7d
- SSDEEP
  
  49152:qeRvnwK61a7hg/WdK+pgqx8HFF6iKabwS6zbv6rijnw3MAmkphUKO+q27XoS:qeRvnJ61a9guhV6HFF6UwSM6rirwGkph
Score

10^/10

netsupport rat
- NetSupport
  NetSupport is a remote access tool sold as a legitimate system administration software.
  rat netsupport
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy