Description

The File Manager feature in malware serves as a Swiss Army knife for cybercriminals, enabling them to list, download, upload, or delete files on a compromised system. Acting as an illicit file explorer, this feature provides comprehensive access to the victim's stored data, whether it's sensitive personal information, valuable intellectual property, or configuration files that can be manipulated for further compromise. The ability to upload files also means the attacker can place additional malicious payloads or tools on the system, facilitating a deeper level of exploitation. Likewise, the download function allows for easy exfiltration of valuable or sensitive data. Deleting files can either be used to cover tracks or cause harm, making the File Manager feature a versatile tool in the arsenal of a cybercriminal.

Categories Disruption, Exfiltration, Alteration, File System
Dangerousness High

Existing Techniques

Name Associated Feature(s) Has Snippet Matching Sample
Execute Programs logoExecute Programs File Manager, Shell Access 0
File Search logoFile Search File Manager 0
File System Enumeration logoFile System Enumeration File Manager 0
Network Shares Enumeration logoNetwork Shares Enumeration File Manager, Network Manager 0

Associated with Releases

Version Origins Authors Languages Release Date
Turkojan 4.0 logoTurkojan 4.0 Turkey πŸ‡ΉπŸ‡· Fungus Delphi Mar, 2008
sharK 3.1 fwb++ logosharK 3.1 fwb++ Germany πŸ‡©πŸ‡ͺ sNiper109 , rockZ Visual Basic 6 (VB6) Mar, 2008
Lost Door 2.2 logoLost Door 2.2 Tunisia πŸ‡ΉπŸ‡³ OussamiO Visual Basic 6 (VB6) May, 2008
Aero 2 logoAero 2 Unknown πŸ΄β€β˜ οΈ Gareth Delphi Oct, 2008
Lost Door 3.0 Stable logoLost Door 3.0 Stable Tunisia πŸ‡ΉπŸ‡³ OussamiO Visual Basic 6 (VB6) Mar, 2009
SynRAT 4.0.1 logoSynRAT 4.0.1 France πŸ‡«πŸ‡· DarkCoderSc Delphi May, 2009
PrjRAPTOR 1.8 logoPrjRAPTOR 1.8 United States πŸ‡ΊπŸ‡Έ Ryan.M Visual Basic 6 (VB6) Jul, 2009
Cerberus 1.0 Beta logoCerberus 1.0 Beta United States πŸ‡ΊπŸ‡Έ, United Kingdom πŸ‡¬πŸ‡§ Protocol , Steve10120 , 2sly , Sam Delphi Aug, 2009
Cerberus 1.01 Beta logoCerberus 1.01 Beta United States πŸ‡ΊπŸ‡Έ, United Kingdom πŸ‡¬πŸ‡§ Protocol , Steve10120 , 2sly , Sam Delphi Aug, 2009
Cerberus 1.02 Beta logoCerberus 1.02 Beta United States πŸ‡ΊπŸ‡Έ, United Kingdom πŸ‡¬πŸ‡§ Protocol , Steve10120 , 2sly , Sam Delphi Aug, 2009
SynRAT 4.3.1-A-1 logoSynRAT 4.3.1-A-1 France πŸ‡«πŸ‡· DarkCoderSc Assembly, Delphi Aug, 2009
Apocalypse RAT 1.4 logoApocalypse RAT 1.4 Turkey πŸ‡ΉπŸ‡· ap0calypse Delphi Aug, 2009
Cerberus 1.03.4 logoCerberus 1.03.4 United States πŸ‡ΊπŸ‡Έ, United Kingdom πŸ‡¬πŸ‡§ Protocol , Steve10120 , 2sly , Sam Delphi Sep, 2009
Spy-Net 2.6 logoSpy-Net 2.6 Brazil πŸ‡§πŸ‡· Raphael Delphi Oct, 2009
DarkComet RAT 1.3 logoDarkComet RAT 1.3 France πŸ‡«πŸ‡· DarkCoderSc Nov, 2009
Cerberus 1.03.5 Beta logoCerberus 1.03.5 Beta United States πŸ‡ΊπŸ‡Έ, United Kingdom πŸ‡¬πŸ‡§ Protocol , Steve10120 , 2sly , Sam Delphi Dec, 2009
DarkComet RAT 2.0 RC4 logoDarkComet RAT 2.0 RC4 France πŸ‡«πŸ‡· DarkCoderSc Delphi Mar, 2010
CyberGate 1.04.8 logoCyberGate 1.04.8 United States πŸ‡ΊπŸ‡Έ johnyk Delphi Apr, 2010
Lost Door 4.3.1 logoLost Door 4.3.1 Tunisia πŸ‡ΉπŸ‡³ OussamiO Visual Basic 6 (VB6) Apr, 2010
DarkComet RAT 2.0 RC7 logoDarkComet RAT 2.0 RC7 France πŸ‡«πŸ‡· DarkCoderSc Assembly, Delphi Jun, 2010
Schwarze Sonne 1.0 logoSchwarze Sonne 1.0 Unknown πŸ΄β€β˜ οΈ, Germany πŸ‡©πŸ‡ͺ, Turkey πŸ‡ΉπŸ‡· ap0calypse , Slayer616 , Counterstrikewi Delphi Jun, 2010
Lost Door 5.1 logoLost Door 5.1 Tunisia πŸ‡ΉπŸ‡³ OussamiO Visual Basic 6 (VB6) Oct, 2010
Coolvibes 1 Update 8 logoCoolvibes 1 Update 8 Spain πŸ‡ͺπŸ‡Έ Thor Delphi May, 2011
Xtreme RAT 2.9 logoXtreme RAT 2.9 Brazil πŸ‡§πŸ‡· Raphael Delphi Jul, 2011
DarkComet RAT 5.3 logoDarkComet RAT 5.3 France πŸ‡«πŸ‡· DarkCoderSc Assembly, Delphi Jun, 2012
DarkComet RAT 5.3.1 logoDarkComet RAT 5.3.1 France πŸ‡«πŸ‡· DarkCoderSc Assembly, Delphi Jun, 2012
Bozok 1.4 logoBozok 1.4 Germany πŸ‡©πŸ‡ͺ, Turkey πŸ‡ΉπŸ‡· Slayer616 Delphi Aug, 2013
NjRat 0.7d logoNjRat 0.7d Kuwait πŸ‡°πŸ‡Ό njq8 VB .net Dec, 2013
Quasar 1.0 logoQuasar 1.0 Unknown πŸ΄β€β˜ οΈ MaxXor C# Aug, 2015
Lost Door 9.2 Aws logoLost Door 9.2 Aws Tunisia πŸ‡ΉπŸ‡³ OussamiO Visual Basic 6 (VB6) Jan, 2022