Deep Dive Into SectopRat
Hello World, In this Article we will gonna look through a newly version of SectopRat Its written in Dotnet So It wasn't so hard. Thanks for @Arkbird and JAMESWT For Their Original Tweets. Quick Introduction: SectopRat is a RAT Tool was Firstly Discovered by MalwareHunterTeam in November 15,2019 It has capabilities like connecting to C2 Server, Profiling the System, Steal Browser History From Browsers like Chrome and Firefox, It Sends Stolen User Data in a Json File. In Depth Reversing: Sectop Weapozies WMI ( Windows Management Instrumentation ) in Order to Collect System Information. Here it Gets OS Name and Version: Sectop Has a Class named "GetSystemInfo" that Implements most of its System Profiling. It Collects: . OS Name and Version . Graphics Card Name and Vram Size . CPU Version and Number Of Cores . Physical Memory Size . Mac Address Other Things It Collects Like Screen Resolution: Sectop Also Steals Browser History From B