MASOL RAT

Description

(Trend Micro) We discovered that Earth Estries uses another cross-platform backdoor, which we initially identified during our investigation of Southeast Asian government incidents in 2020. We named it MASOL RAT based on its PDB string. We couldn’t link MASOL RAT to any known threat group at the time due to limited information. However, this year we observed that Earth Estries has been deploying MASOL RAT on Linux devices targeting Southeast Asian government networks.

Names

Name
MASOL RAT
Backdr-NQ

Type

Backdoor

Information

https://www.trendmicro.com/en_us/research/24/k/earth-estries.html

Other Information

Uuid

af09c77a-dc2b-42e3-87cb-54bd83877493

Last Card Change

2024-12-28

Threat Intelligence Garden

Explorer

MASOL RAT

MASOL RAT

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks