Extracted

• • Target

    458045804580.js

  • Size

    3KB

  • MD5

    171a355d5785a185ea3b4e0ed492ab8f

  • SHA1

    35074dcfb9ea1f95f1f5a5b0f55f9a15bec0b8cd

  • SHA256

    b7a8c276f3c573a244ec940d6a15bb9b95137066596b4e82e812b75334771b95

  • SHA512

    b0313df3a48eb9ba363feabd9cfd9f42f64496a4aac037558663eba1c1297e7cd2cf1d752687fed0944699ba7e28fcb04546edbe774eb8e5c0ab5b76e8004ade

  Score

  10^/10

  netsupportpersistencerat

  • NetSupport

    NetSupport is a remote access tool sold as a legitimate system administration software.

    ratnetsupport

  • Blocklisted process makes network request

  • Executes dropped EXE

  • Loads dropped DLL

  • Adds Run key to start application

    persistence
  behavioral1behavioral2