Rps420: Rat.7z

: Modifies system registries or startup folders to ensure it runs every time the PC boots.

: Allows attackers to run shell commands or scripts on the host. RPS420 RAT.7z

: Watch for unusual outbound traffic to Discord API endpoints or unknown IP addresses. : Modifies system registries or startup folders to

: Often uses Discord Webhooks as a Command and Control (C2) channel to exfiltrate data. 🛡️ Detection and Mitigation including saved passwords

: Targets browser data, including saved passwords, cookies, and autofill info.

Previous

The scandalous death of the Duke of Cumberland's valet
Next

Double assassination attempt on George III 15 May 1800