Overview

overview

7

Static

static

1

DiscordSetup.exe

windows7-x64

1

DiscordSetup.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    DiscordSetup.exe

  • Size

    91.7MB

  • Sample

    231111-yc7kkabc6y

  • MD5

    411157551877439b673ea6440e06db15

  • SHA1

    1fbae80bbe7ac29c2400979ad37f8f53bbd09805

  • SHA256

    528b6da45f60c70e76b510aea1b80127ab65438600096ec759ed3faf6360485c

  • SHA512

    8bff693968223c6c78a544c95fb50d8ba28ac25d21672d7ae5ceba2a057a8cb006266697aac4badf0542d452b8ab4505b04803debe3b1127967701c99e63dee2

  • SSDEEP

    1572864:nt1Nu73kzO3PET5hKay4qbSo0MmcTdjy8qgLwlfll6hkIyN5ai5afW70E:nM7syE98arqb3mc04LAtT+M70

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      DiscordSetup.exe

    • Size

      91.7MB

    • MD5

      411157551877439b673ea6440e06db15

    • SHA1

      1fbae80bbe7ac29c2400979ad37f8f53bbd09805

    • SHA256

      528b6da45f60c70e76b510aea1b80127ab65438600096ec759ed3faf6360485c

    • SHA512

      8bff693968223c6c78a544c95fb50d8ba28ac25d21672d7ae5ceba2a057a8cb006266697aac4badf0542d452b8ab4505b04803debe3b1127967701c99e63dee2

    • SSDEEP

      1572864:nt1Nu73kzO3PET5hKay4qbSo0MmcTdjy8qgLwlfll6hkIyN5ai5afW70E:nM7syE98arqb3mc04LAtT+M70

    Score
    7/10
    persistencespywarestealer

    • Reads local data of messenger clients

      Infostealers often target stored data of messaging applications, which can include saved credentials and account information.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks