JRat
Description
(Electronic Frontier Foundation) One of the common malware samples used over the course of Operation Manul is known as JRat or Jacksbot. JRat is a commercially available remote access tool (RAT), written in Java. JRat is currently available for purchase at jrat[.]io for the price of $40USD. JRat has been continuously developed for the last four years, seemingly by a single developer who goes by the name “redp0ison”. While JRat itself is closed source, many modules and helpful utilities are open source and are available on github.
Names
| Name |
|---|
| JRat |
| Jacksbot |
Category
Malware
Type
- Backdoor
Information
- https://www.eff.org/files/2016/08/03/i-got-a-letter-from-the-government.pdf
- https://blog.trendmicro.com/trendlabs-security-intelligence/jacksbot-has-some-dirty-tricks-up-its-sleeves/
- https://maskop9.wordpress.com/2019/02/06/analysis-of-jacksbot-backdoor/
- https://research.checkpoint.com/malware-against-the-c-monoculture/
- https://www.intego.com/mac-security-blog/new-multiplatform-backdoor-jacksbot-discovered
Malpedia
Other Information
Uuid
c9a2dfe0-4dca-44f4-a310-08d7efe3e726
Last Card Change
2021-04-24