netsupport | 8944f34a1e1d9fbc8a1fbe07e597fdabe992e71b861c442a8e29ec4f588ead78 | Triage

Sharing

General

Target

netsupport43.zip
Size

2.1MB
Sample

240430-sdgsmshe6y
MD5

49f5d98484c9ccce2976fd1d69a7a2e7
SHA1

83a3d8eec90f40f1a553351d81e7dbb15c8ec09a
SHA256

8944f34a1e1d9fbc8a1fbe07e597fdabe992e71b861c442a8e29ec4f588ead78
SHA512

49a26eab95ca5dfcced4837407da50257a3b9a373caca058224dfeda234204f1f460dbc0c7180c6d3d268929880222218f52e96db31d32be40fb34064ec85bad
SSDEEP

24576:9Pi6BRnmSnTpUDCNIsyYPPluW9z/BqIQZfW4OCayzzB6q8G9Y3MQQXSK87X6w08o:Fz3TpHNIsvPIW9zgIKfqifFa8Z8dRMCE

Score

10^/10

netsupport rat

Malware Config

Targets

- Target
  
  client/client32.exe
- Size
  
  54KB
- MD5
  
  9497aece91e1ccc495ca26ae284600b9
- SHA1
  
  a005d8ce0c1ea8901c1b4ea86c40f4925bd2c6da
- SHA256
  
  1b63f83f06dbd9125a6983a36e0dbd64026bb4f535e97c5df67c1563d91eff89
- SHA512
  
  4c892e5029a707bcf73b85ac110d8078cb273632b68637e9b296a7474ab0202320ff24cf6206de04af08abf087654b0d80cbecfae824c06616c47ce93f0929c9
- SSDEEP
  
  1536:HtvrImfzoXK6DDvvvDvpvZMt+pan/opgRl2:lImfzoXK9/o66
Score

10^/10

netsupport rat
- NetSupport
  NetSupport is a remote access tool sold as a legitimate system administration software.
  rat netsupport
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3