What makes China Chopper “stealthy” as a Remote Access Tool (RAT) kit?
- The traffic between the web shell and the client is sent over an encrypted SSH connection.
- the small size of the web shell application
- the small UDP traffic footprint
- the complexity of the web shell script written in PHP
| Explanation & Hint:
The primary factor that makes China Chopper “stealthy” as a Remote Access Tool (RAT) kit is: The small size of the web shell application. This small footprint makes it difficult for security tools to detect and allows it to be easily embedded in various files or web pages, helping it evade detection. |