G700 : The Next Generation of Craxs RAT - CYFIRMA
Tags
cmtmf-attack-pattern: Application Layer Protocol Location Tracking Obfuscated Files Or Information Resource Hijacking System Network Connections Discovery
country: India
maec-delivery-vectors: Watering Hole
attack-pattern: Data Abuse Elevation Control Mechanism - T1626 Abuse Elevation Control Mechanism - T1548 Accessibility Features - T1546.008 Software Discovery - T1418 Application Layer Protocol - T1437 Audio Capture - T1429 Botnet - T1583.005 Botnet - T1584.005 Bypass User Account Control - T1548.002 Credentials - T1589.001 Disguise Root/Jailbreak Indicators - T1408 Encrypted Channel - T1521 Encrypted Channel - T1573 Exploitation For Privilege Escalation - T1404 Exploits - T1587.004 Exploits - T1588.005 Input Capture - T1417 Keylogging - T1056.001 System Network Configuration Discovery - T1422 System Network Connections Discovery - T1421 Location Tracking - T1430 Malware - T1587.001 Malware - T1588.001 Obfuscated Files Or Information - T1406 System Information Discovery - T1426 Multi-Factor Authentication - T1556.006 Phishing - T1660 Phishing - T1566 Resource Hijacking - T1496 Screen Capture - T1513 Sms Messages - T1636.004 Software - T1592.002 Software Discovery - T1518 Sudo And Sudo Caching - T1548.003 Web Protocols - T1071.001 Web Service - T1481 Tool - T1588.002 Vulnerabilities - T1588.006 Accessibility Features - T1015 Standard Application Layer Protocol - T1071 Audio Capture - T1123 Bypass User Account Control - T1088 Credential Dumping - T1003 Exploitation For Privilege Escalation - T1068 Input Capture - T1056 Llmnr/Nbt-Ns Poisoning - T1171 Standard Non-Application Layer Protocol - T1095 Obfuscated Files Or Information - T1027 Redundant Access - T1108 Remote Access Tools - T1219 Screen Capture - T1113 System Information Discovery - T1082 System Network Configuration Discovery - T1016 System Network Connections Discovery - T1049 Web Service - T1102 User Execution - T1204 Screen Capture User Execution
Common Information
Type Value
UUID 435b955c-e5ef-4bcf-a66f-043bdef75e91
Fingerprint 94218d138aa5fec9
Analysis status DONE
Considered CTI value 2
Text language
Published Nov. 4, 2024, 7:52 a.m.
Added to db Nov. 5, 2024, 12:55 p.m.
Last updated Dec. 10, 2024, 9:24 p.m.
Headline G700 : The Next Generation of Craxs RAT
Title G700 : The Next Generation of Craxs RAT - CYFIRMA
Detected Hints/Tags/Attributes 141/4/35
Attributes
Details Type #Events CTI Value
Details Domain 20
is.gd
Details File 2
childapp.apk
Details File 2
apkeditor.jar
Details sha256 2
65ad213f9c6403308cbc805ebe122e08c52c8d21d1b4f8efd0f406e2d448bdef
Details sha256 2
dcdf640e0eef93ff9708e73c461d98f30433770edd2a92f603c8e66f23cf77c1
Details sha256 2
313804ea8fda918ff8a909f2367e903b030c3aa305e320d20a865fd6b19d062b
Details MITRE ATT&CK Techniques 432
T1566
Details MITRE ATT&CK Techniques 10
T1108
Details MITRE ATT&CK Techniques 18
T1513
Details MITRE ATT&CK Techniques 106
T1496
Details MITRE ATT&CK Techniques 82
T1548
Details MITRE ATT&CK Techniques 19
T1406
Details MITRE ATT&CK Techniques 92
T1548.002
Details MITRE ATT&CK Techniques 425
T1204
Details MITRE ATT&CK Techniques 2
T1171
Details MITRE ATT&CK Techniques 3
T1408
Details MITRE ATT&CK Techniques 10
T1548.003
Details MITRE ATT&CK Techniques 21
T1430
Details MITRE ATT&CK Techniques 215
T1068
Details MITRE ATT&CK Techniques 466
T1071
Details MITRE ATT&CK Techniques 157
T1056
Details MITRE ATT&CK Techniques 144
T1219
Details MITRE ATT&CK Techniques 7
T1417
Details MITRE ATT&CK Techniques 125
T1056.001
Details MITRE ATT&CK Techniques 302
T1003
Details MITRE ATT&CK Techniques 461
T1071.001
Details MITRE ATT&CK Techniques 643
T1027
Details MITRE ATT&CK Techniques 25
T1418
Details MITRE ATT&CK Techniques 5
T1421
Details MITRE ATT&CK Techniques 13
T1422
Details MITRE ATT&CK Techniques 27
T1426
Details MITRE ATT&CK Techniques 24
T1429
Details MITRE ATT&CK Techniques 160
T1095
Details MITRE ATT&CK Techniques 165
T1573
Details Url 1
https://is.gd/thutjx