netsupport | 34724a90793d798a35536dec556abcc8c70a5a22439db6a26253e7e38923f199 | Triage

Sharing

General

Target

client32.zip
Size

1.9MB
Sample

240422-s948tadb9s
MD5

e3a4c5fcd4e897a59af094ceff43ba69
SHA1

ce97c29880d32e021b273aa471a068d6e86c8e11
SHA256

34724a90793d798a35536dec556abcc8c70a5a22439db6a26253e7e38923f199
SHA512

de427eaffd9b7559c5d6cfedc214bc9103e4554970a57b30e84b7ddec4c71daef2b7523bd9273f9b645aba83cf3f7f943343407203317aaeb584c151e046f1bb
SSDEEP

49152:NJSsL3HYZucjAPOJQIjhVr7NNZgQF1cVWZ1sptZDXSKWPRDFvQAZ:NZoockPO7VrBHgQbGwYDXSbPROAZ

Score

10^/10

netsupport rat

Malware Config

Targets

- Target
  
  client32/client32.exe
- Size
  
  99KB
- MD5
  
  aca274219070da800e92a8cae61235bc
- SHA1
  
  7347b65bb6eaf0931220bb201c39a66206f0d2c4
- SHA256
  
  21903b51f23f7af681a9f69aa066753b202af6c537b97a247d98cfbdec150d63
- SHA512
  
  08df88938059e7324b755c3bc88d8943aaaf6f9244c748f521b265fd0417750e067cff077875d0168a440ad0b5fd3c1b0fa4dd5335bd707d4bf3b07e6c6ede2a
- SSDEEP
  
  768:qHcHeEYjB9aFIrdXrY/TEqMVnYYEFwGxDrLabMiF:qHHF9qEGMVntqxUn
Score

10^/10

netsupport rat
- NetSupport
  NetSupport is a remote access tool sold as a legitimate system administration software.
  rat netsupport
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3