Extracted

• • Target

    374337433743.js

  • Size

    3KB

  • MD5

    de6bf33cbc5bee88ef0aa2083bec2dc3

  • SHA1

    4ded73d0b724a41f7ae0e3803e683ce015183580

  • SHA256

    6b4603acd33305585052c8a5ef3e6e2042fbba014148b5295d1fad492ec63a16

  • SHA512

    27c7d76ed0d1a8b1406cf812010d3654b0ca0dca6f6e28d4788aed32fef829d9d22b43e08a63390063a0dfed06e937c4d9b290f949f416a1c4ea4d758ff2a257

  Score

  10^/10

  netsupportpersistencerat

  • NetSupport

    NetSupport is a remote access tool sold as a legitimate system administration software.

    ratnetsupport

  • Blocklisted process makes network request

  • Executes dropped EXE

  • Loads dropped DLL

  • Adds Run key to start application

    persistence
  behavioral1behavioral2