G700: The Next Generation of Craxs RAT

Tags

External References

• https://www.cyfirma.com/
• https://otx.alienvault.com/

Description

G700 RAT, an advanced variant of Craxs RAT, targets Android devices and cryptocurrency applications. It employs sophisticated techniques like privilege escalation, phishing, and malicious APK distribution to infiltrate devices. The malware bypasses authentication, captures sensitive data, and manipulates legitimate app functions, allowing attackers to perform illicit actions undetected. Developed in C# and Java, it exploits mobile app security gaps, intercepts SMS messages, abuses Android permissions, and hijacks crypto transactions. G700 RAT uses persistence and obfuscation techniques, including Base64 encoding and APK encryption, to evade detection. Distributed through darkweb forums and Telegram channels, it poses a growing threat to device security, especially in cryptocurrency and financial environments.

Date