1. Native, independent stub.
Stub of this RAT has been written in C++ which makes it independent from .NET Framework.
2. Remote Desktop
Remote Desktop feature is realized with a specially crafted VNC module.
3. Hidden Remote Desktop
HRDP module allows you to login to the remote machine without anyone knowing! Windows Account created by this module is automatically hidden from showing up on Windows Startup.
4. Privilege Escalation
Privilege Escalation to Administrator is necessary to use the HRDP Module. It is optional and is executed on demand from the Graphical Interface of WARZONE. This feature has been tested and proven to work on Windows operating systems from Windows 7 to even the latest Windows 10. It is done using Windows Update.
5. Remote WebCam
If the remote computer has a webcam connected, you can view the stream live in the Remote WebCam module.
6. Password Recovery
Grabs passwords from the following browsers:
– Internet Explorer,
Enable Automatic Password Recovery to receive passwords without touching any buttons!
7. File Manager
Upload and Download files at high speed. You can also execute and delete files.
You can Download & Upload files of any size without a problem. You can execute files remotely as well.
8. Download & Execute
Get a direct download link of your file and execute it on the remote computer.
9. Live Keylogger
You can view the keys pressed on remote computer in real time.
10. Offline Keylogger
Keylogs are being saved all the time!
11. Remote Shell
Send commands to the remote computer’s CMD.
12. Process Manager
View and kill processes using Process Manager.
13. Reverse Proxy
Browse the Internet with the remote computer’s IP address!
14. Automatic Tasks
Automatic Tasks are executed when client connects to your WARZONE Server.
Available tasks: Password Recovery, HRDP installation and Exposure to WAN, Download and Execute.
15. Mass Execute
Download and execute your file on all the connected clients with one click.
16. Smart Updater
You use Smart Updater to update your WARZONE RAT file on all the clients AND new clients until you disable the Smart Updater.
Smart Updater is going to uninstall the old file only if the new file has been executed successfully AND if the new file has successfully connected to your WARZONE Server.
17. HRDP WAN Direct Connection
Expose HRDP to the Internet, WAN.
You can connect directly to the public IP without reverse proxy.
Persistence protects the process and the file.
When process or file gets deleted, they will be recovered.
19. Windows Defender Bypass
WARZONE Client will add itself to exclusions once it executes.
This will prevent Windows Defender from scanning your WARZONE Client.