NavRAT

Description

(Talos) Talos has discovered a new malicious Hangul Word Processor (HWP) document targeting Korean users. If a malicious document is opened, a remote access trojan that we’re calling ‘NavRAT’ is downloaded, which can perform various actions on the victim machine, including command execution, and has keylogging capabilities.

Names

Name
NavRAT
JinhoSpy

Type

Backdoor
Keylogger
Info stealer

Information

https://blog.talosintelligence.com/2018/05/navrat.html

Mitre Attack

https://attack.mitre.org/software/S0247/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.navrat

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:navrat

Other Information

Uuid

b38c64f4-8c44-4c8a-b4c4-8fdd33cba785

Last Card Change

2022-12-28

Threat Intelligence Garden

Explorer

NavRAT

NavRAT

Description

Names

Category

Type

Information

Mitre Attack

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks