AveMaria2

WarzoneRAT AveMaria .NET RAT. Farsi PO lure Middle East targeting. MySqlConnection C2 data storage. Credential theft.

Threat Profile
Type RAT
Programming LanguageC#/.NET
C2 ProtocolTCP/MySQL
First Seen2018
Targets Orta Dogu/MENA
Purpose / Capabilities
  • Remote Access
No C2 servers have been identified for this family yet.

Research Reports (1)

High

WarzoneRAT -- Farsça Satın Alma Emri Tuzağı, Middle East Hedefleme, MySqlConnection C2 | Yüksek

WarzoneRAT AveMaria 1MB. Farsi Portekizce satin alma emri tusagi parca PO 14052001558.exe. MySqlConnection veri depolama. Orta Dogu hedefleme.

Read Report →