Technical analysis of darkvision rat

Intel Name: Technical analysis of darkvision rat

Date of Scan: October 14, 2024

Impact: Medium

Summary:
DarkVision RAT, a customizable remote access trojan first identified in 2020, is known for its low cost and extensive capabilities, including keylogging, screenshot capture, file manipulation, and password theft. Written in C/C++ and assembly, it has become popular among cybercriminals, including those with minimal skills. In July 2024, its use was noted alongside PureCrypter in various attacks. This analysis will explore the RAT’s functionality, detailing its core features, network communication protocols, commands, and plugins, as well as the attack chain associated with its infections.

More Details