netsupport | dc4be6108556c83d14c4502cba0da6a1a42a01dbf2e0edc8bfd3bd922b86d734 | Triage

Submit
Reports

Overview

overview

Static

static

3

client32.exe

windows7-x64

client32.exe

windows10-2004-x64

Resubmissions

28-03-2024 06:11

240328-gxnvhscd42 10

19-03-2024 23:47

240319-3s3zjabf4x 10

Sharing

General

Target

94499196a62341b4f1cd10f3e1ba6003d0c4db66c1eb0d1b7e66b7eb4f2b67b6.zip
Size

2.4MB
Sample

240328-gxnvhscd42
MD5

66a628a3e78042498fe224f763cc076a
SHA1

e50e22bb510917f5925860cbff3ea65369166a3a
SHA256

dc4be6108556c83d14c4502cba0da6a1a42a01dbf2e0edc8bfd3bd922b86d734
SHA512

6ddf53c9a1f2b97a0c0773b928adde9f88e36b29f27c6a96e4bf0c0ff9df3da00e1c272f05bff6df3ab4e8750d07caf914d4eb50e3e154a13a124cda41709d5e
SSDEEP

49152:ik8nwLiE9ewMp13YXXEs661PmkvGfrO43P30fmoNE4j7/KEfZcuTUElrPAFG:iNnOjet1IXUs66h8F3P3yE4/jfN

Score

10^/10

netsupport rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

client32.exe

Resource

win7-20240221-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

client32.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  client32.exe
- Size
  
  117KB
- MD5
  
  a2b46c59f6e7e395d479b09464ecdba0
- SHA1
  
  92c132307dd21189b6d7912ddd934b50e50d1ec1
- SHA256
  
  89f0c8f170fe9ea28b1056517160e92e2d7d4e8aa81f4ed696932230413a6ce1
- SHA512
  
  4f4479ddcd9d0986aec3d789f9e14f9285e8d9d63a5b8f73c9e3203d3a53cd575b1e15edf0d5f640816bb7f25bd3501244e0f7c181a716a6804742ed2f1cf916
- SSDEEP
  
  768:rNd8VZl6FhWr80/aVr2pe/1G42KFKcMkjWBr2pe/zcKFKcMkA:rfO0hGSBee/1GVIrveee/IIrU
Score

10^/10

netsupport rat
- NetSupport
  NetSupport is a remote access tool sold as a legitimate system administration software.
  rat netsupport
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy