Extracted

• • Target

    232123212321.js

  • Size

    3KB

  • MD5

    55b69c07b1ba60eb1dd5f602a503c8a8

  • SHA1

    f52c545c39628c813234d509a6a52decdf320464

  • SHA256

    08e4dadf294dad1072e37c8979e394055ce176c940e36f47895c2929efb24125

  • SHA512

    2f30c9cac5d4e0de019fd03e4cee935baf5d1d048923215d5a53e96028a675c4ddcf0f3e3e9ad8942d0c2118fc5659f23b9b20295e00185af73c1fe6ef576673

  Score

  10^/10

  netsupportpersistencerat

  • NetSupport

    NetSupport is a remote access tool sold as a legitimate system administration software.

    ratnetsupport

  • Blocklisted process makes network request

  • Executes dropped EXE

  • Loads dropped DLL

  • Adds Run key to start application

    persistence
  behavioral1behavioral2