A new web-based Remote Access Trojan (RAT), currently in testing, is now in the marketing process on hacker forums, a researcher said.
Called RemoteIt, when the RAT releases it will go for about $20, said security researcher Suriya Prakash.
“Unlike other RATs, the controller is fully online, instead of in the person’s computer. This is technically a HTTP botnet, but it has the features of a desktop RAT,” he said.
The beta version of RemoteIt comes with features such as pop-up messages, a file manager, webcam capture, remote desktop and a download feature, Prakash said.
However, the final variant will also include a “survey sender” and a Socks5 proxy.
“I see a lot of hope for these types of botnets as it brings together the flexibility and ease of use of a HTTP botnet and the functionality of a RAT and so my guess is that we will see a LOT more of such botnets in 2013,” Prakash said.
“The only thing I see as a problem for these types of botnets is stability, but if coded right then it would definitely be possible to have stability.”
Suriya also said from his understanding from the forums, the source code might also be for sale.