| SYMBOL | COMMON_NAME | aka. SYNONYMS |
win.asyncrat (Back to overview)
AsyncRAT
AsyncRAT is a Remote Access Tool (RAT) designed to remotely monitor and control other computers through a secure encrypted connection. It is an open source remote administration tool, however, it could also be used maliciously because it provides functionality such as keylogger, remote desktop control, and many other functions that may cause harm to the victim’s computer. In addition, AsyncRAT can be delivered via various methods such as spear-phishing, malvertising, exploit kit and other techniques.
References
| 2023-09-08 ⋅ Uncovering DDGroup — A long-time threat actor AsyncRAT Ave Maria BitRAT DBatLoader NetWire RC Quasar RAT XWorm |
| 2023-07-11 ⋅ Spamhaus ⋅ Spamhaus Botnet Threat Update Q2 2023 Hydra AsyncRAT Aurora Stealer Ave Maria BumbleBee Cobalt Strike DCRat Havoc IcedID ISFB NjRAT QakBot Quasar RAT RecordBreaker RedLine Stealer Remcos Rhadamanthys Sliver Tofsee |
| 2023-06-08 ⋅ Twitter (@embee_research) ⋅ Practical Queries for Identifying Malware Infrastructure: An informal page for storing Censys/Shodan queries Amadey AsyncRAT Cobalt Strike QakBot Quasar RAT Sliver solarmarker |
| 2023-05-19 ⋅ cocomelonc ⋅ Malware source code investigation: AsyncRAT AsyncRAT |
| 2023-05-09 ⋅ Huntress Labs ⋅ Advanced Cyberchef Tips - AsyncRAT Loader AsyncRAT |
| 2023-04-12 ⋅ Spamhaus ⋅ Spamhaus Botnet Threat Update Q1 2023 FluBot Amadey AsyncRAT Aurora Ave Maria BumbleBee Cobalt Strike DCRat Emotet IcedID ISFB NjRAT QakBot RecordBreaker RedLine Stealer Remcos Rhadamanthys Sliver Tofsee Vidar |
| 2023-04-08 ⋅ kienmanowar Blog ⋅ [QuickNote] Uncovering Suspected Malware Distributed By Individuals from Vietnam AsyncRAT DCRat WorldWind |
| 2023-03-30 ⋅ loginsoft ⋅ From Innocence to Malice: The OneNote Malware Campaign Uncovered Agent Tesla AsyncRAT DOUBLEBACK Emotet Formbook IcedID NetWire RC QakBot Quasar RAT RedLine Stealer XWorm |
| 2023-03-27 ⋅ splunk ⋅ AsyncRAT Crusade: Detections and Defense AsyncRAT |
| 2023-03-01 ⋅ Zscaler ⋅ OneNote: A Growing Threat for Malware Distribution AsyncRAT Cobalt Strike IcedID QakBot RedLine Stealer |
| 2023-02-11 ⋅ AsyncRAT OneNote Dropper AsyncRAT |
| 2023-02-08 ⋅ Huntress Labs ⋅ AsyncRAT: Analysing the Three Stages of Execution AsyncRAT |
| 2023-01-04 ⋅ Malware development tricks: part 26. Mutex. C++ example. AsyncRAT Conti HelloKitty |
| 2022-12-06 ⋅ 360 Threat Intelligence Center ⋅ Analysis of suspected APT-C-56 (Transparent Tribe) attacks against terrorism AhMyth Meterpreter SpyNote AsyncRAT |
| 2022-10-13 ⋅ Spamhaus ⋅ Spamhaus Botnet Threat Update Q3 2022 FluBot Arkei Stealer AsyncRAT Ave Maria BumbleBee Cobalt Strike DCRat Dridex Emotet Loki Password Stealer (PWS) Nanocore RAT NetWire RC NjRAT QakBot RecordBreaker RedLine Stealer Remcos Socelars Tofsee Vjw0rm |
| 2022-09-06 ⋅ Check Point ⋅ DangerousSavanna: Two-year long campaign targets financial institutions in French-speaking Africa AsyncRAT Meterpreter PoshC2 DangerousSavanna |
| 2022-08-29 ⋅ Netskope ⋅ AsyncRAT: Using Fully Undetected Downloader AsyncRAT |
| 2022-08-29 ⋅ 360 netlab ⋅ PureCrypter Loader continues to be active and has spread to more than 10 other families 404 Keylogger Agent Tesla AsyncRAT Formbook RedLine Stealer |
| 2022-08-18 ⋅ Proofpoint ⋅ Reservations Requested: TA558 Targets Hospitality and Travel AsyncRAT Loda NjRAT Ozone RAT Revenge RAT Vjw0rm |
| 2022-08-17 ⋅ Secureworks ⋅ DarkTortilla Malware Analysis Agent Tesla AsyncRAT Cobalt Strike DarkTortilla Nanocore RAT RedLine Stealer |
| 2022-08-16 ⋅ Qualys ⋅ AsyncRAT C2 Framework: Overview, Technical Analysis & Detection AsyncRAT |
| 2022-07-17 ⋅ Resecurity ⋅ Shortcut-Based (LNK) Attacks Delivering Malicious Code On The Rise AsyncRAT BumbleBee Emotet IcedID QakBot |
| 2022-07-15 ⋅ HP ⋅ Stealthy OpenDocument Malware Deployed Against Latin American Hotels AsyncRAT |
| 2022-07-13 ⋅ Trellix ⋅ Targeted Attack on Government Agencies AsyncRAT LimeRAT |
| 2022-06-08 ⋅ Symantec ⋅ Attackers Exploit MSDT Follina Bug to Drop RAT, Infostealer AsyncRAT |
| 2022-06-03 ⋅ Avast Decoded ⋅ Outbreak of Follina in Australia AsyncRAT APT40 |
| 2022-06-03 ⋅ Avast ⋅ Outbreak of Follina in Australia AsyncRAT |
| 2022-06-02 ⋅ FortiGuard Labs ⋅ Threat Actors Prey on Eager Travelers AsyncRAT NetWire RC Quasar RAT |
| 2022-06-01 ⋅ Github (jstnk9) ⋅ Analyzing AsyncRAT distributed in Colombia AsyncRAT |
| 2022-05-19 ⋅ Blackberry ⋅ .NET Stubs: Sowing the Seeds of Discord (PureCrypter) Aberebot AbstractEmu AdoBot 404 Keylogger Agent Tesla Amadey AsyncRAT Ave Maria BitRAT BluStealer Formbook LimeRAT Loki Password Stealer (PWS) Nanocore RAT Orcus RAT Quasar RAT Raccoon RedLine Stealer WhisperGate |
| 2022-05-12 ⋅ Morphisec ⋅ New SYK Crypter Distributed Via Discord AsyncRAT Ave Maria Nanocore RAT NjRAT Quasar RAT RedLine Stealer |
| 2022-05-11 ⋅ HP ⋅ Threat Insights Report Q1 - 2022 AsyncRAT Emotet Mekotio Vjw0rm |
| 2022-05-06 ⋅ Mitchell's Musings ⋅ Attempted AsyncRAT via .vbs AsyncRAT |
| 2022-05-02 ⋅ eSentire ⋅ AsyncRAT Activity AsyncRAT |
| 2022-04-28 ⋅ vx-underground ⋅ Tweet on leaked Prynt Stealer source code and similarity to AyncRAT AsyncRAT Prynt Stealer |
| 2022-04-27 ⋅ Zscaler ⋅ Targeted attack on Thailand Pass customers delivers AsyncRAT AsyncRAT |
| 2022-04-27 ⋅ Trend Micro ⋅ New APT Group Earth Berberoka Targets Gambling Websites With Old and New Malware HelloBot AsyncRAT Ghost RAT HelloBot PlugX Quasar RAT Earth Berberoka |
| 2022-04-27 ⋅ Trendmicro ⋅ IOCs for Earth Berberoka - Windows AsyncRAT Cobalt Strike PlugX Quasar RAT Earth Berberoka |
| 2022-04-27 ⋅ Trendmicro ⋅ Operation Gambling Puppet reptile oRAT AsyncRAT Cobalt Strike DCRat Ghost RAT PlugX Quasar RAT Trochilus RAT Earth Berberoka |
| 2022-04-26 ⋅ Trend Micro ⋅ How Cybercriminals Abuse Cloud Tunneling Services AsyncRAT Cobalt Strike DarkComet Meterpreter Nanocore RAT |
| 2022-04-19 ⋅ RiskIQ ⋅ RiskIQ: Legitimate WordPress Site Hosts Malicious Content AsyncRAT |
| 2022-04-05 ⋅ Cisco Talos ⋅ Threat Spotlight: AsyncRAT campaigns feature new version of 3LOSH crypter AsyncRAT LimeRAT |
| 2022-03-31 ⋅ eSentire ⋅ Suspected AsyncRAT Delivered via ISO Files Using HTML Smuggling Technique AsyncRAT |
| 2022-03-12 ⋅ AsyncRAT RCE vulnerability AsyncRAT |
| 2022-03 ⋅ VirusTotal ⋅ VirusTotal's 2021 Malware Trends Report Anubis AsyncRAT BlackMatter Cobalt Strike DanaBot Dridex Khonsari MimiKatz Mirai Nanocore RAT Orcus RAT |
| 2022-02-22 ⋅ NCSC Switzerland ⋅ Week 7: Supposed order confirmation delivers malware and new variants in fake extortion emails AsyncRAT |
| 2022-02-16 ⋅ Playing with AsyncRAT AsyncRAT |
| 2022-02-15 ⋅ Threat Post ⋅ TA2541: APT Has Been Shooting RATs at Aviation for Years AsyncRAT Houdini NetWire RC Parallax RAT |
| 2022-02-15 ⋅ Proofpoint ⋅ Charting TA2541's Flight AsyncRAT TA2541 |
| 2022-02-15 ⋅ BleepingComputer ⋅ Unskilled hacker linked to years of attacks on aviation, transport sectors AsyncRAT Houdini NetWire RC Parallax RAT |
| 2022-02-14 ⋅ Morphisec ⋅ Journey of a Crypto Scammer - NFT-001 AsyncRAT BitRAT Remcos |
| 2022-02-07 ⋅ RiskIQ ⋅ RiskIQ: Malicious Infrastructure Connected to Particular Windows Host Certificates AsyncRAT BitRAT Nanocore RAT |
| 2022-01-26 ⋅ The Hacker News ⋅ Hackers Using New Evasive Technique to Deliver AsyncRAT Malware AsyncRAT |
| 2022-01-25 ⋅ Morphisec ⋅ New Threat Campaign Identified: AsyncRAT Introduces a New Delivery Technique AsyncRAT |
| 2022-01-12 ⋅ Cisco ⋅ Nanocore, Netwire and AsyncRAT spreading campaign uses public cloud infrastructure AsyncRAT Nanocore RAT NetWire RC |
| 2021-12-29 ⋅ Github (jeFF0Falltrades) ⋅ AsyncRAT Configuration Parser AsyncRAT |
| 2021-12-13 ⋅ RiskIQ ⋅ RiskIQ: Connections between Nanocore, Netwire, and AsyncRAT and Vjw0rm dynamic DNS C2 infrastructure AsyncRAT Nanocore RAT NetWire RC Vjw0rm |
| 2021-11-29 ⋅ Trend Micro ⋅ Campaign Abusing Legitimate Remote Administrator Tools Uses Fake Cryptocurrency Websites AsyncRAT Azorult Nanocore RAT NjRAT RedLine Stealer Remcos |
| 2021-11-11 ⋅ Microsoft ⋅ HTML smuggling surges: Highly evasive loader technique increasingly used in banking malware, targeted attacks AsyncRAT Mekotio NjRAT |
| 2021-10-26 ⋅ Kaspersky ⋅ APT attacks on industrial organizations in H1 2021 8.t Dropper AllaKore AsyncRAT GoldMax LimeRAT NjRAT NoxPlayer Raindrop ReverseRAT ShadowPad Zebrocy |
| 2021-10-15 ⋅ ESET Research ⋅ Tweet on a malicious campaign targeting governmental and education entities in Colombia using multiple stages to drop AsyncRAT or njRAT Keylogger on their victims AsyncRAT NjRAT |
| 2021-09-16 ⋅ Cisco ⋅ Operation Layover: How we tracked an attack on the aviation industry to five years of compromise AsyncRAT Houdini NjRAT |
| 2021-09-13 ⋅ Trend Micro ⋅ APT-C-36 Updates Its Spam Campaign Against South American Entities With Commodity RATs (IOCs) AsyncRAT Ave Maria BitRAT Imminent Monitor RAT LimeRAT NjRAT Remcos |
| 2021-09-13 ⋅ Trend Micro ⋅ APT-C-36 Updates Its Spam Campaign Against South American Entities With Commodity RATs AsyncRAT Ave Maria BitRAT Imminent Monitor RAT LimeRAT NjRAT Remcos |
| 2021-09-03 ⋅ Trend Micro ⋅ The State of SSL/TLS Certificate Usage in Malware C&C Communications AdWind ostap AsyncRAT BazarBackdoor BitRAT Buer Chthonic CloudEyE Cobalt Strike DCRat Dridex FindPOS GootKit Gozi IcedID ISFB Nanocore RAT Orcus RAT PandaBanker Qadars QakBot Quasar RAT Rockloader ServHelper Shifu SManager TorrentLocker TrickBot Vawtrak Zeus Zloader |
| 2021-08-19 ⋅ Talos ⋅ Malicious Campaign Targets Latin America: The seller, The operator and a curious link AsyncRAT NjRAT |
| 2021-07-30 ⋅ Menlo Security ⋅ ISOMorph Infection: In-Depth Analysis of a New HTML Smuggling Campaign AsyncRAT NjRAT |
| 2021-07-19 ⋅ Bitdefender ⋅ Debugging MosaicLoader, One Step at a Time AsyncRAT Glupteba |
| 2021-07-12 ⋅ IBM ⋅ RoboSki and Global Recovery: Automation to Combat Evolving Obfuscation 404 Keylogger Agent Tesla AsyncRAT Ave Maria Azorult BitRAT Formbook HawkEye Keylogger Loki Password Stealer (PWS) Nanocore RAT NetWire RC NjRAT Quasar RAT RedLine Stealer Remcos |
| 2021-07-12 ⋅ Cipher Tech Solutions ⋅ RoboSki and Global Recovery: Automation to Combat Evolving Obfuscation 404 Keylogger Agent Tesla AsyncRAT Ave Maria Azorult BitRAT Formbook HawkEye Keylogger Loki Password Stealer (PWS) Nanocore RAT NetWire RC NjRAT Quasar RAT RedLine Stealer Remcos |
| 2021-06-27 ⋅ Fortinet ⋅ Spear Phishing Campaign with New Techniques Aimed at Aviation Companies AsyncRAT |
| 2021-05-14 ⋅ Morphisec ⋅ AHK RAT Loader Used in Unique Delivery Campaigns AsyncRAT Houdini Revenge RAT |
| 2021-05-11 ⋅ Twitter (@MsftSecIntel) ⋅ Tweet on Snip3 crypter delivering AsyncRAT or AgentTesla Agent Tesla AsyncRAT |
| 2021-05-07 ⋅ Morphisec ⋅ Revealing the ‘Snip3’ Crypter, a Highly Evasive RAT Loader Agent Tesla AsyncRAT NetWire RC Revenge RAT |
| 2021-05-05 ⋅ Zscaler ⋅ Catching RATs Over Custom Protocols Analysis of top non-HTTP/S threats Agent Tesla AsyncRAT Crimson RAT CyberGate Ghost RAT Nanocore RAT NetWire RC NjRAT Quasar RAT Remcos |
| 2021-03-16 ⋅ Morphisec ⋅ Tracking HCrypt: An Active Crypter as a Service AsyncRAT LimeRAT Remcos |
| 2021-02-25 ⋅ Intezer ⋅ Year of the Gopher A 2020 Go Malware Round-Up NiuB WellMail elf.wellmess ArdaMax AsyncRAT CyberGate DarkComet Glupteba Nanocore RAT Nefilim NjRAT Quasar RAT WellMess Zebrocy |
| 2021-02-19 ⋅ K7 Security ⋅ GitHub – Home to AsyncRAT Backdoor AsyncRAT |
| 2021-01-11 ⋅ ESET Research ⋅ Operation Spalax: Targeted malware attacks in Colombia Agent Tesla AsyncRAT NjRAT Remcos |
| 2020-12-10 ⋅ JPCERT/CC ⋅ Attack Activities by Quasar Family AsyncRAT Quasar RAT Venom RAT XPCTRA |
| 2020-12-10 ⋅ Intel 471 ⋅ No pandas, just people: The current state of China’s cybercrime underground Anubis SpyNote AsyncRAT Cobalt Strike Ghost RAT NjRAT |
| 2020-11-03 ⋅ Kaspersky Labs ⋅ APT trends report Q3 2020 WellMail EVILNUM Janicab Poet RAT AsyncRAT Ave Maria Cobalt Strike Crimson RAT CROSSWALK Dtrack LODEINFO MoriAgent Okrum PlugX poisonplug Rover ShadowPad SoreFang Winnti |
| 2020-10-19 ⋅ Red Sky Alliance ⋅ Possible Identity of a Kuwaiti Hacker NYANxCAT AsyncRAT |
| 2020-09-21 ⋅ Qianxin ⋅ Operation Tibo: A retaliatory targeted attack from the South Asian APT organization "Mo Luo Suo" AsyncRAT Darktrack RAT |
| 2020-08-26 ⋅ Proofpoint ⋅ Threat Actor Profile: TA2719 Uses Colorful Lures to Deliver RATs in Local Languages AsyncRAT Nanocore RAT |
| 2020-07-30 ⋅ Spamhaus ⋅ Spamhaus Botnet Threat Update Q2 2020 AdWind Agent Tesla Arkei Stealer AsyncRAT Ave Maria Azorult DanaBot Emotet IcedID ISFB KPOT Stealer Loki Password Stealer (PWS) Nanocore RAT NetWire RC NjRAT Pony Raccoon RedLine Stealer Remcos Zloader |
| 2019-11-19 ⋅ VMWare Carbon Black ⋅ Threat Analysis Unit (TAU) Threat Intelligence Notification: AsyncRAT AsyncRAT |
| 2019-01-19 ⋅ Github (NYAN-x-CAT) ⋅ AsyncRAT: Open-Source Remote Administration Tool For Windows C# (RAT) AsyncRAT |