SYMBOLCOMMON_NAMEaka. SYNONYMS
win.reverse_rat (Back to overview)

ReverseRAT

There is no description at this point.

References
2023-02-16ThreatMonThreatMon Malware Research Team, Seyit Sigirci (@h3xecute)
@online{team:20230216:sidecopy:86a53bb, author = {ThreatMon Malware Research Team and Seyit Sigirci (@h3xecute)}, title = {{APT SideCopy Targeting Indian Government Entities - Analysis of the new version of ReverseRAT}}, date = {2023-02-16}, organization = {ThreatMon}, url = {https://threatmon.io/apt-sidecopy-targeting-indian-government-entities/}, language = {English}, urldate = {2023-11-22} } APT SideCopy Targeting Indian Government Entities - Analysis of the new version of ReverseRAT
Unidentified 005 (Sidecopy) ReverseRAT
2021-10-26KasperskyKaspersky Lab ICS CERT
@techreport{cert:20211026:attacks:6f30d0f, author = {Kaspersky Lab ICS CERT}, title = {{APT attacks on industrial organizations in H1 2021}}, date = {2021-10-26}, institution = {Kaspersky}, url = {https://ics-cert.kaspersky.com/media/Kaspersky-ICS-CERT-APT-attacks-on-industrial-organizations-in-H1-2021-En.pdf}, language = {English}, urldate = {2021-11-08} } APT attacks on industrial organizations in H1 2021
8.t Dropper AllaKore AsyncRAT GoldMax LimeRAT NjRAT NoxPlayer Raindrop ReverseRAT ShadowPad Zebrocy
2021-08-11LumenBlack Lotus Labs
@online{labs:20210811:reverserat:f7b36de, author = {Black Lotus Labs}, title = {{ReverseRat Reemerges With A (Night)Fury New Campaign And New Developments, Same Familiar Side-Actor}}, date = {2021-08-11}, organization = {Lumen}, url = {https://blog.lumen.com/reverserat-reemerges-with-a-nightfury-new-campaign-and-new-developments-same-familiar-side-actor/}, language = {English}, urldate = {2022-01-25} } ReverseRat Reemerges With A (Night)Fury New Campaign And New Developments, Same Familiar Side-Actor
ReverseRAT
2021-07-09SeqriteChaitanya Haritash, Nihar Deshpande, Shayak Tarafdar
@techreport{haritash:20210709:seqrite:8d36786, author = {Chaitanya Haritash and Nihar Deshpande and Shayak Tarafdar}, title = {{Seqrite uncovers second wave of Operation SideCopy targeting Indian critical infrastructure PSUs}}, date = {2021-07-09}, institution = {Seqrite}, url = {https://www.seqrite.com/documents/en/white-papers/Whitepaper-OperationSideCopy.pdf}, language = {English}, urldate = {2021-07-20} } Seqrite uncovers second wave of Operation SideCopy targeting Indian critical infrastructure PSUs
NjRAT ReverseRAT
2021-07-02CiscoAsheer Malhotra, Justin Thattil
@online{malhotra:20210702:insidecopy:c85188c, author = {Asheer Malhotra and Justin Thattil}, title = {{InSideCopy: How this APT continues to evolve its arsenal}}, date = {2021-07-02}, organization = {Cisco}, url = {https://s3.amazonaws.com/talos-intelligence-site/production/document_files/files/000/095/591/original/062521_SideCopy_%281%29.pdf?1625657388}, language = {English}, urldate = {2022-01-25} } InSideCopy: How this APT continues to evolve its arsenal
AllaKore CetaRAT Lilith NjRAT ReverseRAT
2021-06-22LumenBlack Lotus Labs
@online{labs:20210622:suspected:b50b23e, author = {Black Lotus Labs}, title = {{Suspected Pakistani Actor Compromises Indian Power Company with New ReverseRat}}, date = {2021-06-22}, organization = {Lumen}, url = {https://blog.lumen.com/suspected-pakistani-actor-compromises-indian-power-company-with-new-reverserat/}, language = {English}, urldate = {2021-12-15} } Suspected Pakistani Actor Compromises Indian Power Company with New ReverseRat
ReverseRAT

There is no Yara-Signature yet.