General
-
Target
discordv2.exe
-
Size
5.9MB
-
Sample
240126-dvj7rsdaf9
-
MD5
3c1b2287f131f397b8475b51350f59e2
-
SHA1
f3459e14088ae0c994e7b0096a8bf0ec0c96fb7a
-
SHA256
19a8fd81a6d49c43a73a9a9e5e12da3794c8f56f7b5ad0ea18be58bf4fcb7f31
-
SHA512
9c58fb80bea90f6fde21e926f2ee4b582bfcd41b81fc76fa54eccb03cd1dbe72eef6706c1edbf5e08e322e18ca77ad4cd00bf8222cfbe4477753b8f7009428ee
-
SSDEEP
98304:fRNEtdFB8GamaHl3Ne4i3gmtfXJOLhx9fZAzDJ4wzQgsRuGK4RtOhjgDJxhkRTU:faFieN/FJMIDJf0gsAGK4RtejakRTU
Malware Config
Targets
-
-
Target
discordv2.exe
-
Size
5.9MB
-
MD5
3c1b2287f131f397b8475b51350f59e2
-
SHA1
f3459e14088ae0c994e7b0096a8bf0ec0c96fb7a
-
SHA256
19a8fd81a6d49c43a73a9a9e5e12da3794c8f56f7b5ad0ea18be58bf4fcb7f31
-
SHA512
9c58fb80bea90f6fde21e926f2ee4b582bfcd41b81fc76fa54eccb03cd1dbe72eef6706c1edbf5e08e322e18ca77ad4cd00bf8222cfbe4477753b8f7009428ee
-
SSDEEP
98304:fRNEtdFB8GamaHl3Ne4i3gmtfXJOLhx9fZAzDJ4wzQgsRuGK4RtOhjgDJxhkRTU:faFieN/FJMIDJf0gsAGK4RtejakRTU
Score7/10-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-