netsupport | a41ebd45e9deaf6e493b90e439b4e3845ccad33572333035a9a09ebc890f6a29 | Triage

Submit
Reports

Overview

overview

Static

static

1

2024-05-23...ia.exe

windows7-x64

2024-05-23...ia.exe

windows10-2004-x64

Sharing

General

Target

2024-05-23_8486c3877613098f3b764f579d56c92d_mafia
Size

919KB
Sample

240523-3gwq3sdc98
MD5

8486c3877613098f3b764f579d56c92d
SHA1

66de769496bef71b5de0ce68d5e22a11dfc2f584
SHA256

a41ebd45e9deaf6e493b90e439b4e3845ccad33572333035a9a09ebc890f6a29
SHA512

34af135cab24eaa6c80a26abf27935e1eeb18f08075e5400d6684a03233d7e3ff454fef0028091f851a8f6d7594fee8ae00ec056df55d831a0c5fb9acbe81821
SSDEEP

24576:cY6mzRruIgLI6Y8Y/+ie9+DPBWeJktfqgt+:cYBRruIgLIz8Y/+Gngt+

Score

10^/10

netsupport rat

Static task

static1

Behavioral task

behavioral1

Sample

2024-05-23_8486c3877613098f3b764f579d56c92d_mafia.exe

Resource

win7-20240221-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-23_8486c3877613098f3b764f579d56c92d_mafia.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-23_8486c3877613098f3b764f579d56c92d_mafia
- Size
  
  919KB
- MD5
  
  8486c3877613098f3b764f579d56c92d
- SHA1
  
  66de769496bef71b5de0ce68d5e22a11dfc2f584
- SHA256
  
  a41ebd45e9deaf6e493b90e439b4e3845ccad33572333035a9a09ebc890f6a29
- SHA512
  
  34af135cab24eaa6c80a26abf27935e1eeb18f08075e5400d6684a03233d7e3ff454fef0028091f851a8f6d7594fee8ae00ec056df55d831a0c5fb9acbe81821
- SSDEEP
  
  24576:cY6mzRruIgLI6Y8Y/+ie9+DPBWeJktfqgt+:cYBRruIgLIz8Y/+Gngt+
Score

10^/10

netsupport rat
- NetSupport
  NetSupport is a remote access tool sold as a legitimate system administration software.
  rat netsupport
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy