General

  • Target

    15c5bedffb7e9c6fe6087703c2743078175cdfd562079593d1711719f2595ac8.exe

  • Size

    3.0MB

  • Sample

    241123-kal9ys1qcy

  • MD5

    28259efc0c77cc8824b1e556aa89f2a6

  • SHA1

    8fa343113fe56e5661fbfdd41a2ef71bb7a16bfe

  • SHA256

    15c5bedffb7e9c6fe6087703c2743078175cdfd562079593d1711719f2595ac8

  • SHA512

    fe45969c62f21220d737e53edeae577fe973a43684b59f0081def0d56358f5134f7dfe5f7c5e5ed8642e455e6b23123d74af279145870f706aa0b3be47ae8fd3

  • SSDEEP

    49152:+qe3f6eaRJ0VLchdr+pHHuOWMuM46LRoRvgpwa94teygbsy:vSiOusHTXotfdewy

Malware Config

Targets

    • Target

      15c5bedffb7e9c6fe6087703c2743078175cdfd562079593d1711719f2595ac8.exe

    • Size

      3.0MB

    • MD5

      28259efc0c77cc8824b1e556aa89f2a6

    • SHA1

      8fa343113fe56e5661fbfdd41a2ef71bb7a16bfe

    • SHA256

      15c5bedffb7e9c6fe6087703c2743078175cdfd562079593d1711719f2595ac8

    • SHA512

      fe45969c62f21220d737e53edeae577fe973a43684b59f0081def0d56358f5134f7dfe5f7c5e5ed8642e455e6b23123d74af279145870f706aa0b3be47ae8fd3

    • SSDEEP

      49152:+qe3f6eaRJ0VLchdr+pHHuOWMuM46LRoRvgpwa94teygbsy:vSiOusHTXotfdewy

    • NetSupport

      NetSupport is a remote access tool sold as a legitimate system administration software.

    • Netsupport family

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks