Extracted

• • Target

    sets.ps1

  • Size

    512B

  • MD5

    9f797334ceca4dbf0f9fde8bad8cdc24

  • SHA1

    11b010e8282adca33fb0439e87230cb502eddffd

  • SHA256

    b0471a55b4f76bdac67acf88eaaed2335198732afbbb5e37adec4c4346cc1edf

  • SHA512

    65f6841951f95a2d98d79650dbb2de602215f8c904c5d2fb0d1f70665408b14fca6f8c32e9399f38f1b03d7df8669b43e55109a9b0b42c61750f1798b3d7c02a

  Score

  10^/10

  persistencenetsupportrat

  • NetSupport

    NetSupport is a remote access tool sold as a legitimate system administration software.

    ratnetsupport

  • Executes dropped EXE

  • Loads dropped DLL

  • Adds Run key to start application

    persistence
  behavioral1behavioral2