discordrat | 030e2173e9cea91905c2c23a5d80d873[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

030e2173e9cea91905c2c23a5d80d873.bin
Size

78KB
MD5

030e2173e9cea91905c2c23a5d80d873
SHA1

e1d6a06ba7ff3d2eaae05d82d5c7d06a6a201c25
SHA256

c14f79dae5b8c7d983d76a680628044e5c5e02cec1d3e08ca10dff8ea0163b20
SHA512

3578b78603447b36b08cccf953c569c0e0be76869037b7358b6acb86032d5327f36456d9d73d8cd7a9657b04896ff506146371a27ba08dcae13183cd54d732d4
SSDEEP

1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+EPIC:5Zv5PDwbjNrmAE+YIC

Score

10^/10

discordrat

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTE5ODMzOTAxMzY5NDcxODAwMg.GEiydB.geof0RgVUfErSbGvj5lJ70jR40vMGV0HVyMtrE
server_id
1195099192721428630

Signatures

Discordrat family
discordrat

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
030e2173e9cea91905c2c23a5d80d873.bin

Files

030e2173e9cea91905c2c23a5d80d873.bin
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ