netsupport | fc7fa29f8b9dbcf9e880b6f22382dfff7ea0af6c22d379fe5dfc329a96d3e165 | Triage

Submit
Reports

Overview

overview

Static

static

3

jv.exe

windows7-x64

jv.exe

windows10-2004-x64

Sharing

General

Target

jv.exe
Size

3.1MB
Sample

240530-lm5gqsdc6v
MD5

3e4c6f9eadf2425f18030e59a60b1394
SHA1

938ce5feb114c40a357209b8d82160525bb3d63a
SHA256

fc7fa29f8b9dbcf9e880b6f22382dfff7ea0af6c22d379fe5dfc329a96d3e165
SHA512

f799b0bbd2770697cd817684f3ad923ba63cf8d11ea4e4ec0bd04c1ae1ce9fc54bbe576f2dcddfa4ba78e8cf510f45c7d1bc75fb75b4d5dbb2e4a4249d13e4d5
SSDEEP

49152:Vn8W9h4QY4uz5kb4t+OXwRAVseniGQjqZr8Qp:l8W9CQY3E4ILAxQjwrn

Score

10^/10

netsupport rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

jv.exe

Resource

win7-20240508-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

jv.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  jv.exe
- Size
  
  3.1MB
- MD5
  
  3e4c6f9eadf2425f18030e59a60b1394
- SHA1
  
  938ce5feb114c40a357209b8d82160525bb3d63a
- SHA256
  
  fc7fa29f8b9dbcf9e880b6f22382dfff7ea0af6c22d379fe5dfc329a96d3e165
- SHA512
  
  f799b0bbd2770697cd817684f3ad923ba63cf8d11ea4e4ec0bd04c1ae1ce9fc54bbe576f2dcddfa4ba78e8cf510f45c7d1bc75fb75b4d5dbb2e4a4249d13e4d5
- SSDEEP
  
  49152:Vn8W9h4QY4uz5kb4t+OXwRAVseniGQjqZr8Qp:l8W9CQY3E4ILAxQjwrn
Score

10^/10

netsupport rat
- NetSupport
  NetSupport is a remote access tool sold as a legitimate system administration software.
  rat netsupport
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy