Skip to content

Hide Navigation Hide TOC

MagicRAT (1408a1dd-f889-5024-be7f-9deb77b06882)

MagicRAT is a remote access tool developed in C++ and exclusively used by the Lazarus Group threat actor in operations. MagicRAT allows for arbitrary command execution on victim machines and provides basic remote access functionality.[Cisco MagicRAT 2022]

Cluster A Galaxy A Cluster B Galaxy B Level
Lazarus Group (0bc66e95-de93-4de7-b415-4041b7191f08) Tidal Groups MagicRAT (1408a1dd-f889-5024-be7f-9deb77b06882) Tidal Software 1