Growth and Commoditization of Remote Access Trojans

Valeros, Veronica; García, Sebastián Rubio

doi:10.1109/eurospw51379.2020.00067

Cited by 12 publications

(6 citation statements)

References 1 publication

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Remcos RAT is a remote administration tool designed to provide attackers with comprehensive control over infected systems. Known for its versatility, Remcos enables a range of malicious activities, including keylogging, file manipulation, and screen capturing as mentioned by Valeros & Garcia (2020). NanoCore is a compact, yet harmful RAT that has gained notoriety for its effectiveness in facilitating unauthorized remote access.…”

Section: Theoretical Notions About Remote Access Trojans (Rats)mentioning

confidence: 99%

See 1 more Smart Citation

Remote Access Trojans Detection Using Convolutional and Transformer-based Deep Learning Techniques

FLOROIU,

NIGA

et al. 2024

ROCYS

View full text Add to dashboard Cite

In recent years, the cybersecurity landscape has been marked by an increased focus on malware attacks, specifically on Trojan-type malware attack that poses a significant threat to Windows and Linux operating systems. This threat underscores the necessity for proactive prevention measures. The present study employs intelligent algorithms to detect malware, with a specific focus on identifying Remote Access Trojans (RATs). RATs are chosen for examination due to their persistent evolution, their increased number of attacks in the last period and, also, their discreet operation within executable files. The dataset for the algorithms is created by computing texture images over a large number of executable files infected with RATs. Various machine learning models, including VGG-16, VGG-19, and ResNet50, are explored for their effectiveness in identifying malicious programs. Additionally, this research delves into transformer architectures, such as the Vision Transformer (ViT), particularly in image classification tasks. Emphasizing the importance of integrating advanced machine learning techniques into cybersecurity efforts, this study aims to strengthen defense mechanisms against evolving cyber threats. Ongoing research is directed towards refining model performance and validating findings across diverse malware datasets.

show abstract

Section: Theoretical Notions About Remote Access Trojans (Rats)mentioning

confidence: 99%

“…Recognized for its modular design, NanoCore allows threat actors to customize its capabilities based on their specific objectives. This adaptability makes it a formidable tool for executing various malicious activities, such as data theft and system manipulation (Valeros & Garcia, 2020).…”

Section: Theoretical Notions About Remote Access Trojans (Rats)mentioning

confidence: 99%

Remote Access Trojans Detection Using Convolutional and Transformer-based Deep Learning Techniques

FLOROIU,

NIGA

et al. 2024

ROCYS

View full text Add to dashboard Cite

show abstract

“…RATs [41] Allows a hacker to take control of the computer and conduct activities such as exploring files, financial transactions, harvesting login credentials.…”

Section: Name Property Examplesmentioning

confidence: 99%

Comprehensive Analysis of Advanced Techniques and Vital Tools for Detecting Malware Intrusion

Vasani,

Bairwa,

Joshi

et al. 2023

Electronics

View full text Add to dashboard Cite

In this paper, we explore how incident handling procedures are currently being implemented to efficiently mitigate malicious software. Additionally, it aims to provide a contextual understanding of diverse malcodes and their operational processes. This study also compares various ways of detecting adware against a selection of anti-virus software. Moreover, this paper meticulously examines the evolution of hacking, covering the methods employed and the actors involved. A comparative analysis of three prominent malware detection tools, Google Rapid Response (GRR), Wireshark, and VirusTotal, is also conducted, aiding in informed decision-making for enhancing application security. This paper reaches its conclusion by conducting an exhaustive analysis of two case studies, offering valuable insights into a diverse range of potential leaks and virus attacks that may pose threats to various conglomerates. In essence, this article provides a comprehensive overview that spans incident handling procedures, the historical development of hacking, and the diverse spectrum of tools accessible for achieving effective malware detection.

show abstract

“…It may behave as spyware to capture keystrokes, audio, and video in the background and ship it to the hacker in real-time. (Valeros & Garcí a, 2020)…”

Section: Remote Access Trojanmentioning

confidence: 99%

A Review of Factors Affecting the Effectiveness of Phishing

Karamagi¹

2021

CIS

View full text Add to dashboard Cite

Phishing has become the most convenient technique that hackers use nowadays to gain access to protected systems. This is because cybersecurity has evolved and low-cost systems with the least security investments will need quite advanced and sophisticated mechanisms to be able to penetrate technically. Systems currently are equipped with at least some level of security, imposed by security firms with a very high level of expertise in managing the common and well-known attacks. This decreases the possible technical attack surface. Nation-states or advanced persistent threats (APTs), organized crime, and black hats possess the finance and skills to penetrate many different systems. However, they are always in need of the most available computing resources, such as central processing unit (CPU) and random-access memory (RAM), so they normally hack and hook computers into a botnet. This may allow them to perform dangerous distributed denial of service (DDoS) attacks and perform brute force cracking algorithms, which are highly CPU intensive. They may also use the zombie or drone systems they have hacked to hide their location on the net and gain anonymity by bouncing off around them many times a minute. Phishing allows them to gain their stretch of compromised systems to increase their power. For a normal hacker without the money to invest in sophisticated techniques, exploiting the human factor, which is the weakest link to security, comes in handy. The possibility of successfully manipulating the human into releasing the security that they set up makes the life of the hacker very easy, because they do not have to try to break into the system with force, rather the owner will just open the door for them. The objective of the research is to review factors that enhance phishing and improve the probability of its success. We have discovered that hackers rely on triggering the emotional effects of their victims through their phishing attacks. We have applied the use of artificial intelligence to be able to detect the emotion associated with a phrase or sentence. Our model had a good accuracy which could be improved with the use of a larger dataset with more emotional sentiments for various phrases and sentences. Our technique may be used to check for emotional manipulation in suspicious emails to improve the confidence interval of suspected phishing emails.

show abstract

Growth and Commoditization of Remote Access Trojans

Cited by 12 publications

References 1 publication

Remote Access Trojans Detection Using Convolutional and Transformer-based Deep Learning Techniques

Remote Access Trojans Detection Using Convolutional and Transformer-based Deep Learning Techniques

Comprehensive Analysis of Advanced Techniques and Vital Tools for Detecting Malware Intrusion

A Review of Factors Affecting the Effectiveness of Phishing

Contact Info

Product

Resources

About