Talos has identified two different versions of a RAT, otherwise known as a remote access trojan, that has been written entirely in Python. The RAT is impacting users of a Brazilian public sector management school. Both versions have all the usual RAT capabilities, however, during our investigation it became clear that version 4.0 (the latest) is a stripped-down version, where some features were removed, as explained later. The target of such campaign are the users of INESAP – Instituto Nacional Escola Superior da Administra.o Pblica.”]
Source: https://blog.talosintelligence.com/2018/02/cannibalrat-targets-brazil.html