AveMaria2
WarzoneRAT AveMaria .NET RAT. Farsi PO lure Middle East targeting. MySqlConnection C2 data storage. Credential theft.
Threat Profile
Type
RAT
Programming LanguageC#/.NET
C2 ProtocolTCP/MySQL
First Seen2018
Targets
Orta Dogu/MENA
Purpose / Capabilities
- Remote Access
No C2 servers have been identified for this family yet.
Research Reports (1)
WarzoneRAT -- Farsça Satın Alma Emri Tuzağı, Middle East Hedefleme, MySqlConnection C2 | Yüksek
WarzoneRAT AveMaria 1MB. Farsi Portekizce satin alma emri tusagi parca PO 14052001558.exe. MySqlConnection veri depolama. Orta Dogu hedefleme.
Read Report →