discordrat | 93cbb28afad0068220ba3db611d549f10cf98dfdd6c50fb552fc1a1c50a952c5 | Triage

Submit
Reports

Overview

overview

Static

static

3

SkiSploit.exe

windows10-2004-x64

Sharing

General

Target

SkiSploit.exe
Size

83KB
Sample

240223-tdgnbacg76
MD5

ac4170123a3b2656873d4e5e7271c6f0
SHA1

e5ab91b0ff264b4fbc5e8bca9d8edb143c589a6c
SHA256

93cbb28afad0068220ba3db611d549f10cf98dfdd6c50fb552fc1a1c50a952c5
SHA512

76042342dfa27a31e233e7a28baa935d2e5ab3434afc297c3597b04edebb154a2558b7a01b884f7ff91f2aae435cc96491b307390cce3264a31253ab22bed269
SSDEEP

1536:t5Qsei1MzG2sMCJFjH24DIR20VJnXeL4+1pQGtbzziA1o5bd/Js4r9n:t5x51MzG5FjW4whnnXeL4+1pv3zHoHB3

Score

10^/10

discordrat persistence rat rootkit stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

SkiSploit.exe

Resource

win10v2004-20240221-en

discordrat persistence rat rootkit stealer

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTIxMDU5Njg2MjI4NTk3NTU3Mg.GYEAWg.exws_xW4B5N2BOYqH9L7eDxtZYaih2ThdeE26E
server_id
1210594550251528262

Targets

- Target
  
  SkiSploit.exe
- Size
  
  83KB
- MD5
  
  ac4170123a3b2656873d4e5e7271c6f0
- SHA1
  
  e5ab91b0ff264b4fbc5e8bca9d8edb143c589a6c
- SHA256
  
  93cbb28afad0068220ba3db611d549f10cf98dfdd6c50fb552fc1a1c50a952c5
- SHA512
  
  76042342dfa27a31e233e7a28baa935d2e5ab3434afc297c3597b04edebb154a2558b7a01b884f7ff91f2aae435cc96491b307390cce3264a31253ab22bed269
- SSDEEP
  
  1536:t5Qsei1MzG2sMCJFjH24DIR20VJnXeL4+1pQGtbzziA1o5bd/Js4r9n:t5x51MzG5FjW4whnnXeL4+1pv3zHoHB3
Score

10^/10

discordrat persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer

© 2018-2025

Terms | Privacy