DETEKSI REMCOS REMOTE ACCESS TROJAN (RAT) PADA PHISHING EMAIL CORONA VIRUS DENGAN METODE REVERSE ENGINEERING

FITRIANI, TARISSA and Stiawan, Deris (2022) DETEKSI REMCOS REMOTE ACCESS TROJAN (RAT) PADA PHISHING EMAIL CORONA VIRUS DENGAN METODE REVERSE ENGINEERING. Undergraduate thesis, Sriwijaya University.

[thumbnail of RAMA_56201_09011381823116.pdf] Text
RAMA_56201_09011381823116.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (2MB) | Request a copy
[thumbnail of RAMA_56201_09011381823116_TURNITIN.pdf] Text
RAMA_56201_09011381823116_TURNITIN.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (9MB) | Request a copy
[thumbnail of RAMA_56201_09011381823116_0003047905_01_front_ref.pdf]
Preview
 Text
RAMA_56201_09011381823116_0003047905_01_front_ref.pdf - Accepted Version
Available under License Creative Commons Public Domain Dedication.
Download (866kB) | Preview
[thumbnail of RAMA_56201_09011381823116_0003047905_02.pdf] Text
RAMA_56201_09011381823116_0003047905_02.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (238kB) | Request a copy
[thumbnail of RAMA_56201_09011381823116_0003047905_03.pdf] Text
RAMA_56201_09011381823116_0003047905_03.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (295kB) | Request a copy
[thumbnail of RAMA_56201_09011381823116_0003047905_04.pdf] Text
RAMA_56201_09011381823116_0003047905_04.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (1MB) | Request a copy
[thumbnail of RAMA_56201_09011381823116_0003047905_05.pdf] Text
RAMA_56201_09011381823116_0003047905_05.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (46kB) | Request a copy
[thumbnail of RAMA_56201_09011381823116_0003047905_06_ref.pdf] Text
RAMA_56201_09011381823116_0003047905_06_ref.pdf - Bibliography
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (191kB) | Request a copy
[thumbnail of RAMA_56201_09011381823116_0003047905_07_lamp.pdf] Text
RAMA_56201_09011381823116_0003047905_07_lamp.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (596kB) | Request a copy

Abstract

Remote Access Trojan (RAT) is a special type of remote access software commonly used for malicious purposes, in which the installation is performed without the user's consent, the remote control then performed silently, and the program hides in the system to avoid detection. Cyber attackers send phishing emails based on COVID-19 themes that attached with malware to disable networks or to steal data and credentials. This study uses reverse engineering and dynamic analysis methods to detect Remcos RAT malware. The results of this study indicate that the Remcos RAT malware used to control remote target computers. The malware infection method uses the TLSv1.2 protocol with RC4 encryption on port 1234 to communicate with the target computer. Malware activity then retrieves target computer information and the capabilities of creating, writing, deleting files, taking screenshots, and recording audio.

Item Type: Thesis (Undergraduate)
Uncontrolled Keywords: CORONA VIRUS, METODE REVERSE ENGINEERING
Subjects: Q Science > QA Mathematics > QA75-76.95 Calculating machines > QA76.9.A25 Computer security. Systems and Data Security.
Divisions: 09-Faculty of Computer Science > 56201-Computer Systems (S1)
Depositing User: Tarissa fitriani
Date Deposited: 13 Jan 2023 07:48
Last Modified: 13 Jan 2023 07:48
URI: http://repository.unsri.ac.id/id/eprint/86157

Actions (login required)

View Item View Item