S0495Windows

S0495RDAT

Platforms
1
ATT&CK
14.1
References
2

Description

[RDAT](https://attack.mitre.org/software/S0495) is a backdoor used by the suspected Iranian threat group [OilRig](https://attack.mitre.org/groups/G0049). [RDAT](https://attack.mitre.org/software/S0495) was originally identified in 2017 and targeted companies in the telecommunications sector.(Citation: Unit42 RDAT July 2020)

Platforms· 1

Windows

References

  1. https://attack.mitre.org/software/S0495
  2. https://unit42.paloaltonetworks.com/oilrig-novel-c2-channel-steganography/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
QUADAGENT
Software
SDBbot
Software
4H RAT
Software
DRATzarus
Software
REvil
Group
OilRig
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.