The malware uses IRC protocols to communicate with the C2 server. It connects to a specific IRC server while running and inputs the attacker's channel. It can carry out DDoS attacks on a target if commands are sent from the channel.
While the UDP RAT supports only UDP Flooding attacks, this one supports additional attacks such as Hulk DDoS, Slowloris, and Goldeneye.
The DDoS IRC bot is new and not widely spread at the moment. However, it is still being disseminated actively via Korean webhards, indicating a specific selection of potential victims. It is recommended to stay alert when downloading files from a file-sharing website and use official sources for download.