Trochilus, RedLeaves (RAT)
Uploaded to GitHub for those who want to analyze the code.
- http://blog.jpcert.or.jp/2017/04/redleaves---malware-based-on-open-source-rat.html
- https://github.com/5loyd/trochilus
A fast&free windows remote administration Tool
Coded in C++ (using VS2010)
- Support TCP,UDP,HTTP,HTTPS
- Serilize Protocol
- Support Non-UAC
- Shellcode Extension
- Remote Uninstall
- Singled-Threaded
- File Manager
- Remote Shell
- Download & Execute
- Upload & Execute
- System Information
devenv.exe build.sln /rebuild RELEASE
Run build.bat
Reverse SOCKS5 ProxySupport UDP reliable transfer.- Shellcode extension SDK.
- Fork it
- Create your feature branch (
git checkout -b my-new-feature) - Commit your changes (
git commit -am 'Add some feature') - Push to the branch (
git push origin my-new-feature) - Create new Pull Request