SYMBOLCOMMON_NAMEaka. SYNONYMS
jar.epicsplit (Back to overview)

EpicSplit RAT

EpicSplit RAT is a multiplatform Java RAT that is capable of running shell commands, downloading, uploading, and executing files, manipulating the file system, establishing persistence, taking screenshots, and manipulating keyboard and mouse events. EpicSplit is typically obfuscated with the commercial Allatori Obfuscator software. One unique feature of the malware is that TCP messages sent by EpicSplit RAT to its C2 are terminated with the string "_packet_" as a packet delimiter.

References
2020-05-11Sudeep Singh
Targeted Attacks on Indian Government and Financial Institutions Using the JsOutProx RAT
EpicSplit RAT

There is no Yara-Signature yet.