RomeoMike

Description

(Novetta) A component of the reported Ten Days of Rain attacks, RomeoMike is a RAT with a very limited set of capabilities yet exhibits a great deal of functional and procedural similarity to SierraJuliett (see Section 17) and DeltaCharlie with regards to the way commands are processed through signed command files. RomeoMike is a service DLL that, after establishing the scaffolding code to appear as a legitimate Windows service.

Names

Name
RomeoMike

Type

Backdoor

Information

https://www.operationblockbuster.com/wp-content/uploads/2016/02/Operation-Blockbuster-RAT-and-Staging-Report.pdf

Other Information

Uuid

005594d1-962d-43c0-a76f-f0e2103e8c43

Last Card Change

2020-04-20

Threat Intelligence Garden

Explorer

RomeoMike

RomeoMike

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks