Behavioral task
behavioral1
Sample
SolaraBETA.exe
Resource
win10v2004-20240419-en
General
-
Target
SolaraBETA.exe
-
Size
78KB
-
MD5
934de8bca4253c836a2098f335c7a8d7
-
SHA1
7802dd411479e3217c7a48821ca3118d28fc461f
-
SHA256
03bc44c43b05a84d73688bfa58272cc48131c6edf2b86919b4576935d7fe7fb9
-
SHA512
43ed2f43a52a27908cf69b3e364b1a8a48b85396732b1d4436691e8d43fc77c944d9e7654ff990550a6b2e0f4f2c371d67936ae70c68ae22d683a2acaa58fcd7
-
SSDEEP
1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+iPIC:5Zv5PDwbjNrmAE+OIC
Malware Config
Extracted
discordrat
-
discord_token
MTE5NTg0ODc1MjI0NjgyNTA1Mg.G7iwnj.U4hRA5hZjWdmprvtP3VL2iI2OPKuIwgzMWzywY
-
server_id
1234555349349040179
Signatures
-
Discordrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource SolaraBETA.exe
Files
-
SolaraBETA.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 76KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ