SYMBOLCOMMON_NAMEaka. SYNONYMS
win.boratrat (Back to overview)

Borat RAT

The Borat RAT comes bundled with its components (e.g. binary builder, supporting modules, server certificates). According to Cyble this malware is an unique combination of RAT, Spyware, and ransomware.
The supporting modules are included; a few of the capabilities: Keylogger, Ransomware, Audio/Webcam Recording, Process Hollowing, Browser Credential/Discord Token Stealing, etc.

References
2022-04-28BlackberryThe BlackBerry Research & Intelligence Team
Threat Thursday: BoratRAT
Borat RAT
2022-04-03Bleeping ComputerBill Toulas
New Borat remote access malware is no laughing matter
Borat RAT
2022-03-31Cyble
Deep Dive Analysis - Borat RAT
Borat RAT

There is no Yara-Signature yet.