Adwind (also known as AlienSpy, Frutas, jFrutas, Unrecom, Sockrat, JSocket, and jRat) is a relatively new cross-platform RAT (remote access trojan), discovered in late 2015 in a targeted attack on a bank in Singapore.

The malware is written solely in JAVA, and capable of running on Windows, MAC OS and Linux. The RAT's capabilities include remote desktop control, data gathering, data exfiltration and lateral movement.

Adwind is available for purchase, and has been used in massive spam campaigns as well as targeted attacks.

ThreatSTOP customers are protected from Adwind.