RAT Remote Administration Tool email also known as Remote Administration Tool (RAT) email, what is it?
RAT Remote Administration Tool email or Remote Administration Tool (RAT) email is a malicious spam email that you may receive in your mailbox demanding you to pay some money in Bitcoin equivalent to someone’s Bitcoin wallet in order to stop the cyber-crime scammers from sharing your personal information on the web, social media or with your personal contacts.
Sometimes these RAT junk emails do contain passwords you may recognize (maybe a password you used previously or still use).
The inclusion of passwords has victims worried for many reasons, justifiably so for suggested below:
If you happen to fall victim of such malicious money extorting email campaigns, some recommendations on what actions to take are suggested below so continue reading.
|Name||Some time ago your computer was infected with my private malware, RAT (Remote Administration Tool).|
|Threat Type||Fraudulent Scam, Phishing Scam, Changing program settings especially privacy settings|
|Symptoms||identity theft and impersonation victim risk, Unauthorized online transactions, changed online account passwords, illegal access to your device.|
|Distribution methods||email attachments of image files, Office Documents, PDF attachments, foreign language emails, deceptive emails, rogue online pop-up ads, misspelled domains, browser that not updated frequently.|
|Damage||hackers can use your identity to perform illegal acts and you become embroiled in something you know nothing about, sensitive private information compromised, monetary loss and reputation damage.|
|Malware Removal||To eliminate possible malware infections, scan your computer with legitimate antivirus anti malwaren software. I recommend using Malwarebytes, you can find here.|
RAT Junk Mail or Spam RAT email – Example 1
YOU BETTER READ THIS!
Hey, today I got some bad news for you.
Check the sender of this email, it’s your email, that means I sent it from your email account.
How?! Some time ago your computer was infected with my private malware, RAT (Remote Administration Tool).
My RAT gave me full access to all your files, accounts, contacts and it also was possible to spy on your desktop and on you over your webcam.
You can google about the functions of Remote Administration Tool.
I COLLECTED ALL YOUR FILES, ACCOUNTS, CONTACTS.
I RECORDED SOME NICE MOMENTS OF YOU FROM YOUR WEBCAM! ;D
I can publish all your files, accounts, contacts, everywhere, including the darknet.
I can send the video of you to all your contacts, post it on social networks and everywhere else.
To stop me, pay 950$ in Bitcoin (BTC).
It’s easy to buy Bitcoin (BTC), for example here: http://exbase.io , https://paxful.om/buy-bitcoin , or google another exchanger.
My Bitcoin (BTC) wallet is: jy1D9BSWQcbn9Pwqqvd2iWatWGRJH7B48YgzZr
Yes that’s how the wallet looks like, copy and paste it, it’s (CaSe-sEnSEtiVE).
I give you 2 days time to pay.
Showing this mail to someone else wont help you, my RAT is no longer on you computer and this email was sent from some random generated account.
After receiving the Bitcoin (BTC), I will delete everything and you never hear from me again.
Next time update your browser before browsing the web!
RAT Junk Mail or Spam RAT email – Example 2
Video Of You!
Hey, some time ago your computer was infected with my private software, RAT (Remote Administration Tool).
My software gave me access to all your accounts, contacts and it was possible to spy on you over your webcam.
For example, I know that at the time of infection your password was: Xxy9X73Y
Sometimes I was spying on you and then once I was shocked seeing you started to MASTRUBATE, so I recorded you with the software called: Bandicam, Google it if you want.
I can share the video of you with all your friends, contacts, post it on social networks and everywhere else.
You can stop me, send 500$ with the cryptocurrency Ethereum (ETH).
It’s easy to buy Ethereum (ETH), for example here: btcdirect.eu , bitvavo.com , anycoindirect.eu , binance.com , or Google another exchanger.
My Ethereum (ETH) wallet is: 0x869C893E84618DA936274bADF3d9E800d0572955xx
Yes that’s how the wallet looks like, copy and paste it.
After receiving the payment, I will remove everything and you never hear from me again.
You got 3 days time!
Next time update your browser before browsing the web, so you won’t get infected again!
Remote Administration Tool Spam eMail – What to do if you receive rat junk mail?
What do you do if you receive rat junk mail in your inbox?
1. Check for Remote administration software on your Computer
If you are using Windows 10, do the following:
- Search for Control Panel in the search bar bottom left (to the right of the Windows Logo)
- Open Control Panel
- Under Programs Click uninstall a program
- Under Program and Features Click uninstall a program
- Check for any installed Remote Administration software eg Let Me In
- Uninstall any RAT Remote Administration Tool Software you find.
- Shutdown your computer. (Note: not restart)
- Turn your Computer ON.
2. Check your Computer’s Remote Desktop Settings
If you are running Windows 10 search for “Remote Desktop Settings” by typing it in the Search Box on the Taskbar. And then select it to open and be presented with the image below. Make sure it’s turned off as shown below. (You can always turn it on if you want to get assistance from someone remote.)
3. Change Password:
If the rat email knows your password that you’re presently using, you need to change the password straight away, like now. The new password should be between 8-15 characters in length, difficult to guess.
A combination of UPPERCASE and lowercase letters plus numbers and special characters. You could use words that are easier to remember but made to satisfy the strong password criteria. For example, if you choose to use words like “NORANSOME” as basis for your password, you could put it in as follows: “[email protected]”
4. Do NOT Pay however much the email sender is asking for!
An incredible number of rat emails with passwords are sent out each day. The senders are hoping that at the very least a few individuals will undoubtedly be persuaded into paying what the fraudsters are asking for in Bitcoin currency. If you are a victim of such rat junk mail DON’T pay.
Paying them anything will encourage them to ask for more.
5. Perform a Full Malware or Virus Scan on your Computer.
If the rat email spam you received contains your current password or previous password, you will quite rightly be worried whether your computer or device is infected.
Even if it doesn’t contain a password you recognize, I recommend you use an up-to-date anti-malware or anti-virus software to do a complete system scan. I recommend you use Malwarebytes.
Running a full system scan will give you reassurance and you will know if any malware or virus has been detected and removed.
6. Switch OFF your Webcam.
Ensure your webcam is not turned on at start-up. Check in the system tray for any camera program running, if it is running then just turn it off. Configure your system so that the webcam is turn on manually. If it’s a USB external webcam, even easier, you just unplug it until you need to use it. This ensures no prgram can record you without you being aware.
7. HaveIBeenPwned (HIBP) Website:
For further investigation you can check to find out if the email address that received the rat email with password, has been compromised in a data breach. Enter that email address on the HaveIBeenPwned (HIBP) Website here.
You might be asking yourself this question:
The (HIBP) website checks your information against multiple data breach records and lets you know if your your identity information has been stolen.
RAT Remote Administration Tool
RAT (Remote Administration Tool) is a software program which allows someone to control another computer system or device as though they were right in front of the device physically access to it.
Authorized and permitted Remote Administration Tools (RAT) are commercial products aimed for use mostly by system administrators. Their main purpose is to permit the authorized access to computer systems for repairing them or managing them remotely.
Nonetheless, legitimate RATs have exactly the same functionality as applications used cyber criminal hackers and, therefore, may be used for unscrupulous and malicious reasons.
Remote Administration Tool removal.
1. Remote Administration Tool removal – Manually uninstalling a recognized and legitimate RAT such as LetMeIn or similar remote-control tools.
Follow the procedure as described above under “Remote Administration Tool Spam eMail – What to do if you receive rat junk mail? – 1. Check for Remote administration software on your Computer”
2. Remote Access Trojans (RAT) Removal – Automatically
Manual malware removal is really a complex task – usually it is advisable to use an anti-malware or anti-virus program to get this done automatically.
To eliminate malware, I suggest using Malwarebytes for Windows which will remove any malware and viruses it finds. See here for the benefits of using Malwarebytes.