Extracted

• • Target

    587258725872.js

  • Size

    3KB

  • MD5

    6db2b1786290430d5e487e9cb9acaa6d

  • SHA1

    d0e41056a1bdbc1595cd17a240662967ccebde19

  • SHA256

    54c6857b6cdccf8f4fa795cb511c0b56fb9b42bbec6ca2cc503ecd478199153c

  • SHA512

    7ef21c842a9261d4ea96c7de6f04c0a4b9ac66c49726841cb227d86ba2e0a5281606d3e0cf7cd7b05722aa2b975701755ad9f75f169ffef9dbc89dd74864a8f0

  Score

  10^/10

  netsupportpersistencerat

  • NetSupport

    NetSupport is a remote access tool sold as a legitimate system administration software.

    ratnetsupport

  • Blocklisted process makes network request

  • Executes dropped EXE

  • Loads dropped DLL

  • Adds Run key to start application

    persistence
  behavioral1behavioral2