📜 Post with us on Reddit
📝 Create a new article
🏭 Create a company page
🇬🇧 - in English
🇫🇷 - en Français (FR)
🇵🇹 - em Português (PT)
🇩🇪 - auf Deutsch (DE)
🇯🇵 - 日本語で (JA)
Sponsored articles

You can edit almost every page by Creating an account and confirming your email.

CyberEye RAT

From EverybodyWiki Bios & Wiki


CyberEye is a modular remote access trojan (RAT) that primarily targets Microsoft Windows. Developed in .NET, it uses a GUI builder for payload customization and communicates with its operator through the Telegram Bot API.

Overview

CyberEye allows attackers to generate customized malware with features like keystroke logging, clipboard hijacking, screenshot capture, and credential theft. It includes anti-analysis methods such as virtual machine detection and disables Windows Defender via PowerShell scripts.

Technical Analysis

In June 2025, cybersecurity firm CYFIRMA published a technical analysis detailing CyberEye's architecture and behavior.[1] Other reports have appeared from:

References

  1. "Understanding CyberEye RAT: Builder Capabilities and Implications". CYFIRMA. 2025-06-10. Retrieved 2025-06-22.
  2. "CyberEye: The Telegram-Based RAT Targeting Windows Users". Ampcus Cyber. Retrieved 2025-06-22.
  3. "X-Force Intelligence Alert: CyberEye Analysis". IBM X-Force Exchange. Retrieved 2025-06-22.

Categories


This article "CyberEye RAT" is from Wikipedia. The list of its authors can be seen in its historical and/or the page Edithistory:CyberEye RAT. Articles copied from Draft Namespace on Wikipedia could be seen on the Draft Namespace of Wikipedia and not main one.


Retrieved from "https://en.everybodywiki.com/index.php?title=CyberEye_RAT&oldid=5026884"
License CC BY-SA 3.0
Powered by MediaWiki