Names | RMS Remote Manipulator System | |
Category | Tools | |
Type | Backdoor, Info stealer | |
Description | CyberInt states that Remote Manipulator System (RMS) is a legitimate tool developed by Russian organization TektonIT and has been observed in campaigns conducted by TA505 as well as numerous smaller campaigns likely attributable to other, disparate, threat actors. In addition to the availability of commercial licenses, the tool is free for non-commercial use and supports the remote administration of both Microsoft Windows and Android devices. | |
Information | <https://rmansys.ru/remote-access/> | |
Malpedia | <https://malpedia.caad.fkie.fraunhofer.de/details/win.rms> |
Last change to this tool card: 23 April 2020
Download this tool card in JSON format
Previous: Rising Sun
Next: Roaming Mantis
Changed | Name | Country | Observed | ||
APT groups | |||||
Gamaredon Group | ![]() | 2013-Apr 2020 | |||
TA505, Graceful Spider, Gold Evergreen | ![]() | 2006-Oct 2020 | ![]() |
2 groups listed (2 APT, 0 other, 0 unknown)
Thailand Computer Emergency Response Team (ThaiCERT) Follow us on![]() ![]() |
Report incidents |
|
![]() |
+66 (0)2-123-1234 | |
![]() |
report@thaicert.or.th | |
![]() |
Download PGP key |