Hi all!
Our work this week is very busy though I still try to arrange to share to you a pretty good tool. I hope it will help you gain more knowledge. It’s TheFatRat.
Now, we will discuss it!

What is TheFatRat?

TheFatRat is an easy-to-use Exploitation Tool that can help you to generate backdoors and post exploitation attacks like browser attack DLL files. This tool compiles malware with popular payloads and then the compiled malware can be executed on Windows, Linux, Mac OS X and Android. The malware that created with this tool also have an ability to bypass most AV software protection.

Automating metasploit functions

  • Checks for metasploit service and starts if not present
  • Easily craft meterpreter reverse_tcp payloads for Windows, Linux, Android and Mac and another
  • Start multiple meterpreter reverse_tcp listners
  • Fast Search in searchsploit
  • Bypass AV
  • Create backdoor with another techniq
  • Autorunscript for listeners ( easy to use )
  • Drop into Msfconsole
  • And more

Autorun Backdoor
– Autorun work if the victim disabled uac ( user acces control ) or low uac ( WINDOWS )
– We have also created 3 AutoRun files
– Simply copy these files to a CD or USB
– You can change the icon autorun file or exe in folder icon ( replace your another ico and replace name with autorun.ico )

How change the icon?
– Copy your icon picture to folder /TheFatrat/icons
– Change the name into autorun.ico
– And Replace
– Done

How to install TheFatRat?
1. git clone https://github.com/Screetsec/TheFatRat.git

  1. cd TheFatrat
  2. chmod +x setup.sh
  3. ./setup.sh

If you install error.

You can fix it as me:
1. Install Monodevelop
$sudo apt-get update
$sudo apt-get install monodevelop

  1. Install Mingw-64
    $apt-get install mingw-w64

Fix finish!
You can reinstall TheFasRat.

How it works?
– $chmod +x fatrat
– $chmod +x powerfull.sh
– And run the tools ( ./fatrat )

  • Easy to Use just input your number

Run TheFatRat:
$sudo ./fatrat

Enter to continue….

Enter to continue….

Select function. In here, i select [06] Create Fud Backdoor 1000% with PwnWinds [Excelent]
Enter to continue.

Select Backdoor you want create. I select [3] Create exe file with apache + Powershell (FUD 100%).

Enter to continue.
LHOST: it is your IP.
You can see: Your local IPV4 address is :
You can run command:
$ifconfig wlan0

You can choose port you like and port is not used.
In here, I choose 6789.
Next, enter the base name for output files.

Choose payload you want create with backdoor.

Finish, we will open file in “output” directory.

Now, we will test with AV.
Go to https://nodistribute.com/

Upload my file and result:

In here, you can see result. I think it is quite good.
Avira: Clean
Malwarebytes Anti-Malware: Clean
McAfee: Clean
AhnLab V3 Internet Security: Clean

I will stop the instroduction here for you to discover more about TheFatRat. Hope you will discover more interesting things.
Good bye 🙂

Reference: GitHub

Leave a Reply