RemoteUtilities is a legitimate remote administration tool that has been used by MuddyWater since at least 2021 for execution on target machines.
|Enterprise||T1083||File and Directory Discovery||
RemoteUtilities can enumerate files and directories on a target machine.
|Enterprise||T1105||Ingress Tool Transfer||
RemoteUtilities can upload and download files to and from a target machine.
RemoteUtilities can take screenshots on a compromised host.
|Enterprise||T1218||.007||System Binary Proxy Execution: Msiexec||
RemoteUtilities can use Msiexec to install a service.