THREATOPS
THREAT OPSThreat News › Millenium: A RAT Rewritten, A Threat Multiplied

Millenium: A RAT Rewritten, A Threat Multiplied

lowgroupib_blog

Group-IB analyzes Millenium RAT version 4.*, a remote access trojan that has undergone an architectural shift from .NET to native C++, while continuing to leverage the Telegram Bot API for command and control, requiring no dedicated server infrastructure. This blog also profiles the developer “ShinyEnigma”, and threat actor cluster “Y2K Operators” responsible for active Millenium RAT exploitation

Original source: https://www.group-ib.com/blog/millenium-rat-maas/