VenomRAT (Remote Access Trojan) is a hacking tool that, at first glance, may appear as a legitimate application. The creators of the VenomRAT present this tool as a genuine utility named ‘Venom Software,’ which is meant for surveillance of employees and family members. However, it is clear that this is nothing more than a disguise for a threatening piece of malware.
Users who want to subscribe to the services of the VenomRAT would have to pay $150 per month. The VenomRAT is a malware-as-a-commodity service, which can be purchased from a publicly available Web page. Users who subscribe to the VenomRAT also will receive a step-by-step guide and multiple videos, which outline how one should set up the hacking tools and how to deploy it in an attack. The fact that anyone can get their hands on the VenomRAT and that there are detailed instructions on how to use it, make this Trojan very threatening.
Once the VenomRAT is installed on a targeted host, it will be able to:
- Open hidden Web browser pages.
- Deploy an infostealer module, which collects important files, sensitive data, browser information, etc.
- Deploy a keylogging module used to collect the keystrokes of the victim.
- Establish a hidden remote desktop connection.
- Run remote commands.
- Transfer files between the C&C (Command & Control) server of the attackers and the infected system.
- Use the host’s camera to record video.
- Use the host’s microphone to record audio.
It is clear that the VenomRAT is not a threat we can underestimate. This malware is capable of collecting a wide range of files and data from its targets. Make sure your PC is protected by an up-to-date, trustworthy anti-virus software suite, which will not allow pests like the VenomRAT anywhere near your data and your system.