RemoteAccessTrojaner

RemoteAccessTrojaner, commonly abbreviated as RAT, is a type of malicious software designed to provide remote access and control over an infected computer or device. The term is the German equivalent of Remote Access Trojan and is used in threat reports to describe a covert backdoor installed by an attacker. RATs are typically delivered through phishing emails, drive-by downloads, or software bundled with seemingly legitimate programs, and they often masquerade as a normal application to avoid suspicion. After execution, the RAT establishes a communication channel with a command-and-control server or a peer network, granting the attacker persistent access.

Capabilities of RATs include remote desktop and file system access, keystroke capture, screen and webcam capture,

Operational models vary; most RATs use a client component on the infected host that communicates with a

Prevention and defense include keeping software patched, using endpoint protection and network monitoring for unusual outbound