NavRAT
Description
(Talos) Talos has discovered a new malicious Hangul Word Processor (HWP) document targeting Korean users. If a malicious document is opened, a remote access trojan that we’re calling ‘NavRAT’ is downloaded, which can perform various actions on the victim machine, including command execution, and has keylogging capabilities.
Names
Name |
---|
NavRAT |
JinhoSpy |
Category
Malware
Type
- Backdoor
- Keylogger
- Info stealer
Information
Mitre Attack
Malpedia
Alienvault Otx
Other Information
Uuid
b38c64f4-8c44-4c8a-b4c4-8fdd33cba785
Last Card Change
2022-12-28