Black will become for you an incredible tool to achieve everything remotely.” “This tool is ideal for everyone who necessitate to access, monitor or operate remotely on a given system for a wide and various range of needs, administration professionals, parental control, forensics, sourveillance, remote assistance.
Cyberseal crypter cracked full#
It will give you full access and control over a remote machine through a countless number of features, giving you the ability to monitor, access or manipulate every activity and data remotely, just like you are in front of it!”Īs is typical with other malicious RATs promoted at the same underground forums, Speccy claims legitimate purpose:
Cyberseal crypter cracked pro#
“Black Remote Controller PRO is a powerful and full featured systems remote admnistration suite. The sales site for Blackremote RAT, blackremotepro (Figure 4), was registered on August 19, 2019. It also included the claim “ this rat is fully runtime undetected” and a link to “ purchase FUD crypter.” There is no legitimate reason for this software to need to be “undetectable” or “crypted.” Rather, such efforts are intended to prevent detection by antimalware software.įigure 3. The YouTube description (Figure 3) included a link to his personal site speccydev. The succinct posts shared a link to his sales site blackremotepro, and his discord handle Speccy#0100.ĭuring the same week, he posted a YouTube video (Figure 2), with instructions for setting up his RAT. Promoting his RATĭuring the first week of September 2019, the actor started promoting his new RAT on several underground forums (Figure 1), using the handles Speccy and Rafiki.
We also document this RAT already being used in malicious attacks in the wild. In this report, we document the RAT manager/builder, client malware, and profile the Swedish actor behind this together with his promotion and sale of his malware. While researching prevalent commodity Remote Access Tools (RATs), Unit 42 researchers discovered a new, undocumented RAT in September, which had almost 50 samples observed in more than 2,200 attack sessions within the first month it was sold.
0 kommentar(er)
