netsupport | ca716460789ee11dd3e8950ea8cb8439f9c8f81d440722a162094bc77dfb4f8b | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...b2.exe

windows7-x64

JaffaCakes...b2.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_68ba4a4817b9571586df8f69562304b2
Size

3.0MB
Sample

250107-r15ybaxkhk
MD5

68ba4a4817b9571586df8f69562304b2
SHA1

ca88cdb06157a73f651dab9c409f72f6363a4602
SHA256

ca716460789ee11dd3e8950ea8cb8439f9c8f81d440722a162094bc77dfb4f8b
SHA512

bad6b6f383675564f732d3d182f09d83fc5738b6b4085259609942d1de4233de641a9637da9279dc6c1f427a2b74cc936522f932ec8f4aff22d3d9323a7d4a62
SSDEEP

49152:+qe3f6eaRJ0VLchdr+pHHuOWMuM46LRoRvgpwa94teygbsi:vSiOusHTXotfdewi

Score

10^/10

netsupport discovery rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_68ba4a4817b9571586df8f69562304b2.exe

Resource

win7-20240903-en

netsupport discovery rat

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_68ba4a4817b9571586df8f69562304b2.exe

Resource

win10v2004-20241007-en

netsupport discovery rat

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_68ba4a4817b9571586df8f69562304b2
- Size
  
  3.0MB
- MD5
  
  68ba4a4817b9571586df8f69562304b2
- SHA1
  
  ca88cdb06157a73f651dab9c409f72f6363a4602
- SHA256
  
  ca716460789ee11dd3e8950ea8cb8439f9c8f81d440722a162094bc77dfb4f8b
- SHA512
  
  bad6b6f383675564f732d3d182f09d83fc5738b6b4085259609942d1de4233de641a9637da9279dc6c1f427a2b74cc936522f932ec8f4aff22d3d9323a7d4a62
- SSDEEP
  
  49152:+qe3f6eaRJ0VLchdr+pHHuOWMuM46LRoRvgpwa94teygbsi:vSiOusHTXotfdewi
Score

10^/10

netsupport discovery rat
- NetSupport
  NetSupport is a remote access tool sold as a legitimate system administration software.
  rat netsupport
- Netsupport family
  netsupport
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

netsupportdiscoveryrat

behavioral2

netsupportdiscoveryrat

© 2018-2025

Terms | Privacy