General
-
Target
Text Document.txt.exe
-
Size
78KB
-
MD5
e1425d7ff672e82c64b3238b5e9b0749
-
SHA1
a8d47832b2da59d9258e12219b1273da4be27df4
-
SHA256
4610841b78f8f15937f49b635c9f1f8011e5068b137fd32d4b3be6b141ef2ea6
-
SHA512
ccfbc7c897df90f6e7b19a83087e6559142717861605391a91505f75fe954e05316c17e006835660ae01338acb665d878f5f7988dc98b73e35f95e59c3591b3c
-
SSDEEP
1536:v7Va/sfO8XReVMPZAvtDwbONrfxCXhRoKV6+V+n+E:v7OsEWawbONrmAE++E
Malware Config
Extracted
discordrat
-
discord_token
MTIwMTg4NzE3NjQ1MTk1MjY3MA.GxeJ2b.KbXZ-Omh2iJG5BgGJ38cdMBjI7NKXSYqSBHsCI
-
server_id
1201887775536988170
Signatures
-
Discordrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Text Document.txt.exe
Files
-
Text Document.txt.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 76KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ