Names | RMS Remote Manipulator System | |
Category | Tools | |
Type | Backdoor, Info stealer | |
Description | CyberInt states that Remote Manipulator System (RMS) is a legitimate tool developed by Russian organization TektonIT and has been observed in campaigns conducted by TA505 as well as numerous smaller campaigns likely attributable to other, disparate, threat actors. In addition to the availability of commercial licenses, the tool is free for non-commercial use and supports the remote administration of both Microsoft Windows and Android devices. | |
Information | <https://rmansys.ru/remote-access/> | |
Malpedia | <https://malpedia.caad.fkie.fraunhofer.de/details/win.rms> |
Last change to this tool card: 23 April 2020
Download this tool card in JSON format
Changed | Name | Country | Observed | ||
APT groups | |||||
![]() | Gamaredon Group | ![]() | 2013-May 2022 ![]() | ||
LazyScripter | [Unknown] | 2018 | |||
TA505, Graceful Spider, Gold Evergreen | ![]() | 2006-Oct 2021 | ![]() |
3 groups listed (3 APT, 0 other, 0 unknown)
Digital Service Security Center Follow us on![]() ![]() |
Report incidents |
|
![]() |
+66 (0)2-123-1227 | |
![]() |
[email protected] |