More RATs and description added.

pull/4/head
Alexandre Dulaunoy 2016-03-19 23:08:01 +01:00
parent e952576252
commit 4a7d9461f9
1 changed files with 21 additions and 2 deletions

View File

@ -73,7 +73,12 @@
"value": "NETEAGLE" "value": "NETEAGLE"
}, },
{ {
"value": "Agent.BTZ" "value": "Agent.BTZ",
"synonyms": ["ComRat"]
},
{
"value": "Heseber BOT",
"description": "RAT bundle with standard VNC (to avoid/limit A/V detection)."
}, },
{ {
"value": "Agent.dne" "value": "Agent.dne"
@ -90,6 +95,14 @@
{ {
"value": "Winexe" "value": "Winexe"
}, },
{
"value": "Dark Comet",
"description": "RAT initialy identified in 2011 and still actively used."
},
{
"value": "AlienSpy",
"description": "RAT for Apple OS X platforms"
},
{ {
"value": "CORESHELL" "value": "CORESHELL"
}, },
@ -103,7 +116,13 @@
"value": "OLDBAIT" "value": "OLDBAIT"
}, },
{ {
"value": "Havex RAT" "value": "Havex RAT",
"synonyms": ["Havex"]
},
{
"value": "KjW0rm",
"description": "RAT initially written in VB.",
"refs": ["https://www.sentinelone.com/blog/understanding-kjw0rm-malware-we-dive-in-to-the-tv5-cyber-attack/"]
}, },
{ {
"value": "LURK" "value": "LURK"