SYMBOLCOMMON_NAMEaka. SYNONYMS
jar.qrat (Back to overview)

QRat

aka: Quaverse RAT
URLhaus    

QRat, also known as Quaverse RAT, was introduced in May 2015 as undetectable (because of multiple layers of obfuscation). It offers the usual functionality (password dumper, file browser, keylogger, screen shots/streaming, ...), and it comes as a SaaS. For additional historical context, please see jar.qarallax.

References
2021-01-06TrustwaveDiana Lopera
A Trump Sex Video? No, It's a RAT!
QRat
2020-08-24TrustwaveDiana Lopera
RATs and Spam: The Node.JS QRAT
QRat
2017-01-05DigiTrustDigiTrust
QRAT is Living in The World of JAVA
QRat
2015-09-23SpiderLabs BlogRodel Mendrez
Quaverse RAT: Remote-Access-as-a-Service
QRat

There is no Yara-Signature yet.