Someone decompiled the jar at
https://bitbucket.org/indistic/rat/srcIt's a trojan that turns your machine into a bot.
From what I see from the source code...
It connects to a remote server, logins with the credentials that are in its config.xml
Then it waits for orders.
There are several commands. You can see in the options folder.
- pop up some message window
- execute arbitrary system commands,
- execute code that it sends to you,
- upload a plugin, i.e. new code to enhance its functionality
- browse to a url
- upload a screenshot
Yeah ... it's pretty bad.
--h