Friday, 23 September 2011

What is RAT? (Remote administrative tool

Posted by Ay@n at | 01:47 Labels: , , , ,

The Remote Administrative Tool, or more commonly known as RAT over internet. It is used by hackers to remotely use and control single or multiple computers. It has many useful tools embedded into itself.

It can act as a keylogger.

  • It can capture screenshots.
  • It can control the cameras or web cam.
  • It can disable anti-virus.
  • Can cause system instability
  • Can be used to access files on victim computers.
  • Shell control
  • File management i.e uploading and downloading files.
  • Registry management
  • computer authority i.e you can shut down victim computer.
Most important function of RAT is its power to get access to the victim computer. Once you are in you could do anything you, most feature of RATs are product oriented.

RAT is basically a software that is used to create a server file which once is executed on victims computer, lets the hacker whole access to the system. The server file is provided with IP addresses of both of the attackers and the victim's.
The server file once created is crypted using any crypter to avoid its its detection from anti-viruses, most of the anti virus detects RATs as potential threats and could delete them to avoid this they are crypted. After crypting they are binded with any file with known extension so as to confuse victim to click on them. Once clicked victim is all yours.

RATs that utilize reverse connection have a few major advantages, such as the ones listed below.
  • Outgoing connections generally are less threatening, and are less likely to be detected or blocked by a firewall, such as a router.
  • Since the victim's computer is connecting to the remote administrator, he or she will not need to know the victim's IP in order to connect.
  • The remote administrator does not need to know to which or how many computers the RAT is being installed on, which allows for mass-distribution.
  • If mass-distributed, it is much easier to keep track of the computers the RAT is installed on, since they are all "calling home" by connecting to the remote administrator.
most popular RATs are :
  1. proRAT
  2. Cerberus
  3. Cybergate
  4. Blackshades
  5. Poison Ivy
  6. Schwarze Sonne RAT
  7. Syndrome RAT
  8. Team Viewer
  9. Y3k RAT
  10. Snoopy
Hope you liked this post, soon will be posting tutorial on how to use RATs.

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)