EvilGrab RAT

Description

(Trend Micro) Recently, we spotted a new malware family that was being used in targeted attacks – the EvilGrab malware family. It is called EvilGrab due to its behavior of grabbing audio, video, and screenshots from affected machines. We detect EvilGrab under the following malware families: • BKDR_HGDER • BKDR_EVILOGE • BKDR_NVICM

Looking into the feedback provided by the Smart Protection Network, EvilGrab is most prevalent in the Asia-Pacific region, with governments being the dominant sector targeted. These are consistent with known trends in targeted attacks.

Names

Name
EvilGrab RAT
EvilGrab
Vidgrab
Wmonder
BKDR_HGDER
BKDR_EVILOGE
BKDR_NVICM

Type

Backdoor
Info stealer

Information

https://blog.trendmicro.com/trendlabs-security-intelligence/evilgrab-malware-family-used-in-targeted-attacks-in-asia/

Mitre Attack

https://attack.mitre.org/software/S0152/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.evilgrab

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:evilgrab

Other Information

Uuid

39a329d8-f8a8-4bee-af71-a1a2035b9786

Last Card Change

2020-04-23

Threat Intelligence Garden

Explorer

EvilGrab RAT

EvilGrab RAT

Description

Names

Category

Type

Information

Mitre Attack

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks