NavRAT

Description

(Talos) Talos has discovered a new malicious Hangul Word Processor (HWP) document targeting Korean users. If a malicious document is opened, a remote access trojan that we’re calling ‘NavRAT’ is downloaded, which can perform various actions on the victim machine, including command execution, and has keylogging capabilities.

Names

Name
NavRAT
JinhoSpy

Category

Malware

Type

  • Backdoor
  • Keylogger
  • Info stealer

Information

Mitre Attack

Malpedia

Alienvault Otx

Other Information

Uuid

b38c64f4-8c44-4c8a-b4c4-8fdd33cba785

Last Card Change

2022-12-28