General
-
Target
Hacks.exe
-
Size
78KB
-
MD5
8c1841aa5fcec1abc58fd6b22784f6bd
-
SHA1
af8404de9e25c601c6159c7397ddc7824bcd8709
-
SHA256
f10d6c54c062cac40a9788c0a2df548178173f69b08f8748057746bc44e50123
-
SHA512
8ca0dd87e7ba75cb634ec161db3004138b270bf08a1454129d27069a5fc89932696233a26d2698ec9474f34cbc78af7461bd024b1610d7c939bb5e79c7b01fa6
-
SSDEEP
1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+viPIC:5Zv5PDwbjNrmAE+vOIC
Malware Config
Extracted
discordrat
-
discord_token
MTE4OTYxMzUxNDQ4NzI0Mjg1Mw.GOauSu.9-zZKlFY-Oqk2w7GrELgeekyMzVN0kKJ3iXDEo
-
server_id
1189613753021497364
Signatures
-
Discordrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Hacks.exe
Files
-
Hacks.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 76KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ