Description

The File Manager feature in malware serves as a Swiss Army knife for cybercriminals, enabling them to list, download, upload, or delete files on a compromised system. Acting as an illicit file explorer, this feature provides comprehensive access to the victim's stored data, whether it's sensitive personal information, valuable intellectual property, or configuration files that can be manipulated for further compromise. The ability to upload files also means the attacker can place additional malicious payloads or tools on the system, facilitating a deeper level of exploitation. Likewise, the download function allows for easy exfiltration of valuable or sensitive data. Deleting files can either be used to cover tracks or cause harm, making the File Manager feature a versatile tool in the arsenal of a cybercriminal.

Categories File System, Alteration, Disruption, Exfiltration
Dangerousness High

Existing Techniques

Name Associated Feature(s) Has Snippet Matching Sample
Execute Programs logoExecute Programs File Manager, Shell Access 0
File Search logoFile Search File Manager 0
File System Enumeration logoFile System Enumeration File Manager 0
Network Shares Enumeration logoNetwork Shares Enumeration File Manager, Network Manager 0

Associated with Releases

Version Origins Authors Languages Release Date
LanFiltrator 1.1 Fix 1 logoLanFiltrator 1.1 Fix 1 Australia ๐Ÿ‡ฆ๐Ÿ‡บ Read101 Delphi Aug, 2003
A-311 Death 1.03 logoA-311 Death 1.03 Russia ๐Ÿ‡ท๐Ÿ‡บ Corpse Assembly, MASM Aug, 2003
Optix Pro 1.32 logoOptix Pro 1.32 Unknown ๐Ÿดโ€โ˜ ๏ธ s13az3 , xMs Delphi Sep, 2003
CIA 1.2 logoCIA 1.2 England ๐Ÿด๓ ง๓ ข๓ ฅ๓ ฎ๓ ง๓ ฟ Alchemist Visual Basic 6 (VB6) Sep, 2003
Beast 2.05 logoBeast 2.05 Romania ๐Ÿ‡ท๐Ÿ‡ด Tataye Delphi Sep, 2003
Beast 2.02 logoBeast 2.02 Romania ๐Ÿ‡ท๐Ÿ‡ด Tataye Delphi Sep, 2003
Sinique 1.0 logoSinique 1.0 Unknown ๐Ÿดโ€โ˜ ๏ธ xtremeNTL Delphi Oct, 2003
Fearless Lite 1.01 logoFearless Lite 1.01 Australia ๐Ÿ‡ฆ๐Ÿ‡บ, France ๐Ÿ‡ซ๐Ÿ‡ท Read101 , Triforce Delphi Nov, 2003
ProRat 1.1 logoProRat 1.1 Turkey ๐Ÿ‡น๐Ÿ‡ท HighLander , ATmaCA Borland C++ Jan, 2004
Hue 1.0 logoHue 1.0 Unknown ๐Ÿดโ€โ˜ ๏ธ B33T Visual Basic 6 (VB6) Jan, 2004
ProRat 1.2 logoProRat 1.2 Turkey ๐Ÿ‡น๐Ÿ‡ท HighLander , ATmaCA Borland C++ Jan, 2004
ProRat 1.3 logoProRat 1.3 Turkey ๐Ÿ‡น๐Ÿ‡ท HighLander , ATmaCA Borland C++ Feb, 2004
Nuclear RAT 1.0 Beta 5 logoNuclear RAT 1.0 Beta 5 Brazil ๐Ÿ‡ง๐Ÿ‡ท caesar2k Delphi Feb, 2004
Beast 2.06 logoBeast 2.06 Romania ๐Ÿ‡ท๐Ÿ‡ด Tataye Delphi Feb, 2004
ProRat 1.4 logoProRat 1.4 Turkey ๐Ÿ‡น๐Ÿ‡ท HighLander , ATmaCA Borland C++ Feb, 2004
LanFiltrator 1.5 Beta III logoLanFiltrator 1.5 Beta III Australia ๐Ÿ‡ฆ๐Ÿ‡บ Read101 Delphi Feb, 2004
ProRat 1.6 logoProRat 1.6 Turkey ๐Ÿ‡น๐Ÿ‡ท HighLander , ATmaCA Borland C++ Mar, 2004
ProRat 1.8 logoProRat 1.8 Turkey ๐Ÿ‡น๐Ÿ‡ท HighLander , ATmaCA Borland C++ Mar, 2004
acid Drop 1.5 logoacid Drop 1.5 Unknown ๐Ÿดโ€โ˜ ๏ธ acid_alchemy Visual Basic 6 (VB6) Apr, 2004
Infector NG 2004 2.1.0 logoInfector NG 2004 2.1.0 Belgium ๐Ÿ‡ง๐Ÿ‡ช, United Kingdom ๐Ÿ‡ฌ๐Ÿ‡ง fc , Infiltration Delphi May, 2004
Amiboide 1.0 logoAmiboide 1.0 France ๐Ÿ‡ซ๐Ÿ‡ท Mistareal Visual Basic 6 (VB6) Jun, 2004
Amiboide 2.0 logoAmiboide 2.0 France ๐Ÿ‡ซ๐Ÿ‡ท Mistareal Visual Basic 6 (VB6) Jun, 2004
Optix Pro 1.33 logoOptix Pro 1.33 Unknown ๐Ÿดโ€โ˜ ๏ธ s13az3 Delphi Aug, 2004
Beast 2.07 logoBeast 2.07 Romania ๐Ÿ‡ท๐Ÿ‡ด Tataye Delphi Aug, 2004
Flux 1.0 logoFlux 1.0 Unknown ๐Ÿดโ€โ˜ ๏ธ Gargamel C++ Aug, 2004
Institution 2004 0.4.0 logoInstitution 2004 0.4.0 United States ๐Ÿ‡บ๐Ÿ‡ธ Aphex Delphi Oct, 2004
CIA 1.3 logoCIA 1.3 England ๐Ÿด๓ ง๓ ข๓ ฅ๓ ฎ๓ ง๓ ฟ Alchemist Visual Basic 6 (VB6) Dec, 2004
Messiah 4.0 logoMessiah 4.0 Unknown ๐Ÿดโ€โ˜ ๏ธ Splinter Visual Basic 6 (VB6) Jan, 2005
Seed 1.1 logoSeed 1.1 Brazil ๐Ÿ‡ง๐Ÿ‡ท caesar2k Delphi, C++ Feb, 2005
ProRat 1.9 logoProRat 1.9 Turkey ๐Ÿ‡น๐Ÿ‡ท HighLander , ATmaCA Borland C++ Mar, 2005
Y3K rat 2k5 RC 1.0 logoY3K rat 2k5 RC 1.0 Austria ๐Ÿ‡ฆ๐Ÿ‡น SHA Delphi Jun, 2005
Y3K rat 2k5 RC 1.1 logoY3K rat 2k5 RC 1.1 Austria ๐Ÿ‡ฆ๐Ÿ‡น SHA Delphi Nov, 2005
TrojNa$ 1.0 logoTrojNa$ 1.0 Unknown ๐Ÿดโ€โ˜ ๏ธ, Australia ๐Ÿ‡ฆ๐Ÿ‡บ flippmode , Satan_Addict , Read101 Delphi Jan, 2006
Bersek 1.1 logoBersek 1.1 Brazil ๐Ÿ‡ง๐Ÿ‡ท XpyXt Visual Basic 6 (VB6) Jun, 2006
Turkojan 3.0 logoTurkojan 3.0 Turkey ๐Ÿ‡น๐Ÿ‡ท Fungus Delphi Sep, 2006
Bifrost 1.2.1 logoBifrost 1.2.1 Sweden ๐Ÿ‡ธ๐Ÿ‡ช ksv C++ Jan, 2007
Bandook 1.35 logoBandook 1.35 Lebanon ๐Ÿ‡ฑ๐Ÿ‡ง PrinceAli Delphi, C++ Apr, 2007
BlasterX 1.5 Flash The World logoBlasterX 1.5 Flash The World France ๐Ÿ‡ซ๐Ÿ‡ท BlasterZ , Blastwar Visual Basic 6 (VB6) Apr, 2007
BlasterX 1.5 logoBlasterX 1.5 France ๐Ÿ‡ซ๐Ÿ‡ท BlasterZ , Blastwar Visual Basic 6 (VB6) Apr, 2007
Poison Ivy 2.3.0 logoPoison Ivy 2.3.0 Sweden ๐Ÿ‡ธ๐Ÿ‡ช Shapeless Delphi, MASM Jun, 2007
Hav-Rat 1.3.2 logoHav-Rat 1.3.2 Sweden ๐Ÿ‡ธ๐Ÿ‡ช Havalito Delphi Jul, 2007
sharK 2.4.0 Fwb+ logosharK 2.4.0 Fwb+ Germany ๐Ÿ‡ฉ๐Ÿ‡ช sNiper109 , rockZ Visual Basic 6 (VB6) Aug, 2007
DARKMOON 4.11 Private Edition logoDARKMOON 4.11 Private Edition Spain ๐Ÿ‡ช๐Ÿ‡ธ shukisnike Delphi Aug, 2007
Nuclear RAT 2.1.0 logoNuclear RAT 2.1.0 Brazil ๐Ÿ‡ง๐Ÿ‡ท caesar2k Delphi Sep, 2007
Bump-Rat 1.2 Beta logoBump-Rat 1.2 Beta France ๐Ÿ‡ซ๐Ÿ‡ท Scraniak Visual Basic 6 (VB6) Sep, 2007
Poison Ivy 2.3.2 logoPoison Ivy 2.3.2 Sweden ๐Ÿ‡ธ๐Ÿ‡ช Shapeless Delphi, MASM Jan, 2008
Lost Door 1.0 logoLost Door 1.0 Tunisia ๐Ÿ‡น๐Ÿ‡ณ OussamiO Visual Basic 6 (VB6) Jan, 2008
ZombieRat 1.2 logoZombieRat 1.2 Romania ๐Ÿ‡ท๐Ÿ‡ด The Bo$$ Assembly, Delphi Jan, 2008
Lost Door 2.0 logoLost Door 2.0 Tunisia ๐Ÿ‡น๐Ÿ‡ณ OussamiO Visual Basic 6 (VB6) Feb, 2008
Turkojan 4 logoTurkojan 4 Turkey ๐Ÿ‡น๐Ÿ‡ท FยตNGยตยง Delphi Feb, 2008