EpicSplit RAT

The EpicSplit RAT is a Remote Access Trojan (RAT) that was discovered only recently, and it is not yet clear if it is a piece of commodity malware, or it is being used by just one threat actor. Often, threats of this type are not being used by their author exclusively and, instead, their components can be either sold or rented out to other cybercriminals.

The EpicSplit RAT is written in Java, which means that it would be compatible with Mac and Linux, as well as with Windows. However, it does not seem to support any features specific for a Max or Linux malware, so one can assume that it targets Windows machines exclusively. It also is possible that the author might be planning to expand its functionality and compatibility in the future, hence why they chose Java for the creation of this project.

The EpicSplit RAT may be spread via various means – fake installers and updates, pirated games/software, corrupted email attachments, fake downloads, etc. We advise you to stay very safe while browsing the Web and to stick to visiting safe websites with an excellent reputation. In addition to this, you should be careful with the files you download from the Internet – avoid interacting with unknown files, and always be wary of incoming email attachments that you were not expecting.

If the EpicSplit RAT ends up running on your computer, a remote attacker could use the implant to take almost full control over your system. Just like traditional RATs, this one also provides its attacker with the ability to:

• Browse and modify files and folders.
• Manage running processes and services.
• Transfer files between the control server and the infected host.
• Execute files or launch remote commands.
• Initialize a keylogger or infostealing module.

This is just a fraction of the features that the EpicSplit RAT should support. To make sure that your PC is safe, you should invest in a regularly updated anti-virus solution.