discordrat | Shiba[.]Gold[.]Cracker[.]By[.]DoomMonkey[.]exe | Triage

Resubmissions

29-05-2024 15:18

240529-splwqsac6s 10

15-03-2024 19:02

240315-xp2z6sae24 10

Sharing

General

Target

Shiba.Gold.Cracker.By.DoomMonkey.exe
Size

78KB
MD5

5f0c503f9879fdcd0c58d6d25dc11c8e
SHA1

ad6a927bfd33a8dc772c6a1cd9380ef6feabd277
SHA256

5ac7d084908338850bf604c18e0fa43067b1bc658594c4d4f46efa7e94675885
SHA512

aaea53d46fdbe40aeaa4db1766c1a7211da1e995505d237e55906f7a5340dcd1ae59ef0a0a54979be22192e2b9f82a00f397f9801413a49fa0fc6251f7ffb054
SSDEEP

1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+XPIC:5Zv5PDwbjNrmAE+fIC

Score

10^/10

discordrat

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTIxNzkwODIwODcxMDk3OTU4NA.GJ451F.r77u2gru79ROz_Fr4eZeiUxMHeFR-vOBN8WSeE
server_id
1209487993325359134

Signatures

Discordrat family
discordrat

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
Shiba.Gold.Cracker.By.DoomMonkey.exe

Files

Shiba.Gold.Cracker.By.DoomMonkey.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ