General
-
Target
test.exe
-
Size
78KB
-
MD5
69654e44a4f435755ed6b64e5eb980ba
-
SHA1
e2e20eb143699fb81683fe9ec9d09839c99bdeb4
-
SHA256
a509124bcc5751e5f622b4450d44e2434881b20c3c5046f9fd859e5cc2af5474
-
SHA512
b49b5dacfea9836602b134f63a3e24c86808771dbe2d6781f2061adb3677aa54d07ced5fe7aa7137b02460854d447459c9610a6a04a8f1de6ae4deb26b14baea
-
SSDEEP
1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+gPIC:5Zv5PDwbjNrmAE+EIC
Malware Config
Extracted
discordrat
-
discord_token
MTIwMjM5OTUyODUxNTI3Mjc5NA.GWxKW6.6V0MyiMWQ0H-DObM-VGZcmWfjrXgLUtepqJYtE
-
server_id
1202737484350619659
Signatures
-
Discordrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource test.exe
Files
-
test.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 76KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ