Pelstar Forum

Meet Woody the New Remote Access Trojan – FortiGuard Labs is aware of a report stating that a new Remote Access Trojan (RAT) called "Woody" has been lurking in the wild for the past year. The initial infection vectors that were reported include email attachments, as well as Microsoft Word documents that leverage the recently patched Follina vulnerability (CVE-2022-30190). Once a victim is infected, Woody RAT collects and sends specific information to its Command-and-Control (C2) server and performs various activities based on the remote commands it receives.