AndroRAT

Posted: May 21, 2020

AndroRAT Description

AndroRAT is an old malware project that continues to be updated by cybercriminals who got their hands on the original source code. The peculiar thing about this threat is that it was first published eight years ago and had rather basic features. However, AndroRAT has undergone numerous updates to make it compatible with modern Android versions, as well as enhance its functionality. Another thing worth noting is that the original GitHub repository for the project states that it was aimed to be used for educational purposes, and it is a part of a university project – the original author warns that it should not be used with harmful intent. Of course, this is not enough to stop cybercriminals, and AndroRAT has become one of the most popular names in the hacking field when it comes to Android Remote Access Trojans.

Just like Windows RATs, AndroRAT also consists of a server and client component – the server is meant to be run on the infected device, while the operator can use the client to control the implant. As soon as AndroRAT is installed, it will apply changes to the Android configuration, so that the malware will be started even if the device gets restarted. In addition to this, the attackers could use a text message or a phone call to command the AndroRAT implant to run.

The Old AndroRAT Project is Still Being Updated by Random Cybercriminals

In terms of features, the operator of the AndroRAT implant can perform the following tasks on the infected device:

  • Collect contact information.
  • Browse and collect call logs.
  • Collect present text messages and intercept future ones.
  • Use the GPS to receive the device's location.
  • Monitor call activity.
  • Use the camera.
  • Record lie audio via the microphone.
  • Initiate a video stream.
  • Load a URL.
  • Activate the vibration module.

Since AndroRAT is an open-source project, any cybercriminal can expand the malware's functionality, or use various methods to propagate it online. We advise you to keep your phone safe by using an up-to-date Android anti-malware tool.

Use SpyHunter to Detect and Remove PC Threats

If you are concerned that malware or PC threats similar to AndroRAT may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.

Download SpyHunter's Malware Scanner

Note: SpyHunter's free version is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware tool to remove the malware threats. Learn more on SpyHunter. If you would like to uninstall SpyHunter for any reason, please follow these uninstall instructions. To learn more about our policies and practices, visit our EULA, Privacy Policy and Threat Assessment Criteria.

Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.

Use SpyHunter to Detect and Remove PC Threats

If you are concerned that malware or PC threats similar to AndroRAT may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.

Download SpyHunter's Malware Scanner

Note: SpyHunter's free version is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware tool to remove the malware threats. Learn more on SpyHunter. If you would like to uninstall SpyHunter for any reason, please follow these uninstall instructions. To learn more about our policies and practices, visit our EULA, Privacy Policy and Threat Assessment Criteria.

Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.

Leave a Reply

Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter. If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.