A is a type of malware that allows an attacker to remotely control a compromised computer or mobile device. Unlike legitimate remote administration tools (e.g., TeamViewer, AnyDesk), RATs install and operate without the user’s knowledge or consent.

To avoid falling victim to RATs, follow these best practices:

| Vector | Description | Example | |--------|-------------|---------| | | Malicious attachments or links in seemingly legitimate emails. | Invoice_invoice.pdf.exe disguised as a PDF. | | Fake Software Crack Sites | “Cracked” or “free” versions of paid software containing embedded RATs. | Downloading Adobe Photoshop crack from a torrent site. | | Malicious Office Macros | Word/Excel files that prompt users to “enable content,” executing a script that downloads a RAT. | Invoice template with macro that pulls RAT from remote server. | | Exploit Kits | Compromised websites that scan for browser/plugin vulnerabilities to silently download a RAT (drive-by download). | Visiting a hacked news site, no user interaction required. | | Trojanized Installers | Legitimate-looking setup files (e.g., for VPNs, games, utilities) that bundle a RAT. | Fake Zoom installer from a third-party download portal. | | USB Droppers | Physical devices left in public places that autorun a RAT when plugged in. | “Company Survey” USB drive in a parking lot. |

The term refers to the deceptive or unauthorized acquisition and installation of a Remote Access Trojan (RAT) onto a victim’s device. RATs are among the most dangerous forms of malware, providing attackers with covert, administrative-level control over infected systems. This report analyzes the nature of RATs, common distribution methods (download vectors), potential consequences for individuals and organizations, and essential defensive strategies.

: Downloaded automatically via "drive-by downloads" when visiting a compromised website. Common Capabilities Once a RAT is active on a system, the attacker can:

Attackers rarely name these files "RAT." Instead, they use to trick users into downloading them:

: While commercial tracking systems can cost thousands, this RAT can be built for approximately $120. Downloadable Resources for Researchers

A (RAT) is a malicious software program that includes a "backdoor" for administrative control over the target computer. Once downloaded and installed, it allows a remote attacker to view and control the system as if they were sitting right in front of it. How RATs are Downloaded