discordrat | fd1714c58465116ec0d43eb2490c993235018eae95c3e1f64cd7fb3dd469e5c5 | Triage

Submit
Reports

Overview

overview

Static

static

Client-built.exe

windows10-2004-x64

Sharing

General

Target

release (3).zip
Size

473KB
Sample

240529-yrgbxsgh59
MD5

8854b0abb3f0f442f719d676db33462b
SHA1

2150e4243096dd659ed12b4b905a95d07d08bfd9
SHA256

fd1714c58465116ec0d43eb2490c993235018eae95c3e1f64cd7fb3dd469e5c5
SHA512

d8b9f95f2e8d8e216d7637d8d45d5b8569b132ad79ffcb594d275736b634ad89dd848380617b68c4b66b2a034fcd3c680fdf2b971988f842e3f5d8f5258547f0
SSDEEP

12288:xfJ13+GoLo2d5ifXHE8134QwYOwFSFRCLQxP:RKGo8EifSQwY2xP

Score

10^/10

discordrat persistence rat rootkit stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Client-built.exe

Resource

win10v2004-20240426-en

discordrat persistence rat rootkit stealer

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTIzNTMyMzkzMDYwNTEyNTY5Mg.GyAxvk.S34TL9YmFw8GG_AfLFKBk5hiiBjYQun7c2Zt_4
server_id
1244699256464605256

Targets

- Target
  
  Client-built.exe
- Size
  
  78KB
- MD5
  
  d8b414e94960fc9987d21f692f61297a
- SHA1
  
  bc242b315d0a141120dda790a3c9d16d82b8762a
- SHA256
  
  dbe545d0b06bf24150a1ac8fe1f657129907c9645b9c5e281818e540c59dcad0
- SHA512
  
  b82c1e336c0457a84786d5ec6dd1233c730c523dd2e2aed3bbfdbd80e0fa69e238d5a272455cbd91ae89d5a4906905dec97c713e95214adc540d15391b9b1b5c
- SSDEEP
  
  1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+KPIC:5Zv5PDwbjNrmAE+WIC
Score

10^/10

discordrat persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer

© 2018-2024

Terms | Privacy