netsupport | d1386de75dfa2464e30d1282340f19e2bcfc1a2b5100f8629a69bee9f7e1a92e | Triage

Submit
Reports

Overview

overview

Static

static

3

c5c974b331...fe.zip

windows10-2004-x64

Resubmissions

31/10/2023, 18:18

231031-wxygaacc7w 10

25/10/2023, 01:07

231025-bg6shace67 10

Sharing

General

Target

1db10366ab5ca75cdf831099fe6ed83d.bin
Size

2.4MB
Sample

231031-wxygaacc7w
MD5

20fedf2b0b61b804164d4652d53633b3
SHA1

e4619613337906ee8022c4110999b4841e9283ec
SHA256

d1386de75dfa2464e30d1282340f19e2bcfc1a2b5100f8629a69bee9f7e1a92e
SHA512

bc82630e742873cf500a1c698a69bc3efb3e586cb64256d3118ffa8fd1601007ce362eb87f7e0ffea5b9f2c167bb67ca57e9e9a4c3901a962c7ce908f17d51a5
SSDEEP

49152:9CDin73Da3TJFVNqZfEHQvfg/8c7WLtewK/VqDLDpT5FxIFTJMlT+LJfxI:MUSPqZMoLUqDLDpT3eFNMh+lfu

Score

10^/10

netsupport rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c5c974b3315602ffaab9066aeaac3a55510db469b483cb85f6c591e948d16cfe.zip

Resource

win10v2004-20231023-en

windows10-2004-x64

11 signatures

600 seconds

Malware Config

Targets

- Target
  
  c5c974b3315602ffaab9066aeaac3a55510db469b483cb85f6c591e948d16cfe.zip
- Size
  
  2.4MB
- MD5
  
  1db10366ab5ca75cdf831099fe6ed83d
- SHA1
  
  247f1ad72bfcce39b4393abf205cd58eb06d5cd7
- SHA256
  
  c5c974b3315602ffaab9066aeaac3a55510db469b483cb85f6c591e948d16cfe
- SHA512
  
  2723ab86d9a55de3306e2dc6bdcc5c7ae61a0826ae7dc949d9f073855f7dffac826d39e58121d08015b3db1ddae93e81d6a6333777359671dc70c4baaf7cc30c
- SSDEEP
  
  49152:UuU1Zl8lAQumelDlEDThXBJOhHLw6J6h2SFFGf0RBNTQfYc9jh23eWeB3/YSBm7N:PU1Il7/FXamhRFY89YYc9jh23redpmQ0
Score

10^/10

netsupport rat
- NetSupport
  NetSupport is a remote access tool sold as a legitimate system administration software.
  rat netsupport
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy