NavRAT (6ea032a0-d54a-463b-b016-2b7b9b9a5b7e)
Classic RAT that can download, upload, execute commands on the victim host and perform keylogging. However, the command and control (C2) infrastructure is very specific. It uses the legitimate Naver email platform in order to communicate with the attackers via email
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| NavRAT (ec0cad2c-0c13-491a-a869-1dc1758c8872) | Malpedia | NavRAT (6ea032a0-d54a-463b-b016-2b7b9b9a5b7e) | RAT | 1 |