APT Calypso RAT, Flying Dutchman Samples

2019-10-31 Calypso APT: new group attacking state institutions

Attackers exploit Windows SMB vulnerability CVE-2017-0143 or use stolen credentials to gain access, deploy the custom Calypso RAT and use it to upload other tools such as Mimikatz, EternalBlue and EternalRomance. They move laterally and steal data.

  

Download. Email me if you need the password (see in my profile)

 Malware Inventory (work in progress)