Home > List all groups > List all tools > List all groups using tool SSLove RAT

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link Tool: SSLove RAT

NamesSSLove RAT
TypeReconnaissance, Backdoor, Info stealer, Exfiltration
Description(Qihoo 360) The main features of the Android sample in this attack are as follows:

• Get contact
• Get SMS
• Get location
• Get WhatsApp chathistory
• Get call history
• Get file list
• Upload file
• Get device information
• Get account information
• Take a photo

In the process of stealing privacy, SSlove RAT uses a remote SQL Server database to store stolen information such as contacts, text messages, location, WhatsApp chat records, and uploads images, audios, and other files to its FTP server.

Last change to this tool card: 20 April 2020

Download this tool card in JSON format

Previous: SslMM
Next: StarLoader

All groups using tool SSLove RAT


APT groups

     ↳ Subgroup: Pat Bear, APT-C-37Syria2015 

1 group listed (1 APT, 0 other, 0 unknown)

Thailand Computer Emergency Response Team (ThaiCERT)
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1234
PGP Download PGP key