MagicRAT (1408a1dd-f889-5024-be7f-9deb77b06882)
MagicRAT is a remote access tool developed in C++ and exclusively used by the Lazarus Group threat actor in operations. MagicRAT allows for arbitrary command execution on victim machines and provides basic remote access functionality.[Cisco MagicRAT 2022]
Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
---|---|---|---|---|
Lazarus Group (0bc66e95-de93-4de7-b415-4041b7191f08) | Tidal Groups | MagicRAT (1408a1dd-f889-5024-be7f-9deb77b06882) | Tidal Software | 1 |