ThaiCERT    ETDA    MDES
Report
Search
Home > List all groups > List all tools > List all groups using tool AlienSpy

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link Tool: AlienSpy

NamesAlienSpy
CategoryTools
TypeReconnaissance, Backdoor, Keylogger, Credential stealer, Info stealer, Exfiltration, Miner
Description(Proofpoint) The AlienSpy RAT is very powerful in the hands of an attacker. Some of the key features supported by the RAT include:

• Collection of system information for fingerprinting and displaying on the attacker’s controller dashboard
• File system, process and registry explorer with ability to view and modify
• Ability to run console commands
• Keylogging to capture user inputs
• Ability to download and execute secondary payloads
• Credential theft from various browser stores
• Ability to spy on victim through screenshots, webcam, microphone
• Ability to RDP (Remote Desktop) to infected clients
• Ability to mine various type of digital currency such as bitcoin, litecoin, dogecoin etc.
Information<https://www.proofpoint.com/us/threat-insight/post/You-Dirty-RAT>
AlienVault OTX<https://otx.alienvault.com/browse/pulses?q=tag:alienspy>

Last change to this tool card: 22 April 2020

Download this tool card in JSON format

Previous: Alice
Next: Alina POS

All groups using tool AlienSpy

ChangedNameCountryObserved

APT groups

 Packrat[Latin America]2008 

1 group listed (1 APT, 0 other, 0 unknown)

Thailand Computer Emergency Response Team (ThaiCERT)
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1234
E-mail report@thaicert.or.th
PGP Download PGP key