Roland

Description

(Cylance) Roland arrives as an un-obfuscated Win32 PE DLL. This particular version has been packaged to resemble a legitimate DLL, and contains a custom C2 protocol supporting a range of file, registry, process and memory operations, as well as a reverse shell, FTP file uploads, and retrieving system/user information.

Names

Name
Roland
Roland RAT

Type

Reconnaissance
Backdoor
Info stealer
Exfiltration

Information

https://www.cylance.com/content/dam/cylance-web/en-us/resources/knowledge-center/resource-library/reports/SpyRATsofOceanLotusMalwareWhitePaper.pdf

Other Information

Uuid

8ae6858b-a935-4e49-8cf0-8be23f0ec106

Last Card Change

2020-04-20

Threat Intelligence Garden

Explorer

Roland

Roland

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks