discordrat | 71d721537769fce1df1ccc3fd010a23655e558e90dadc50fb153cf3d5bfbccf3 | Triage

Sharing

General

Target

Client-built.exe
Size

78KB
Sample

240531-1gxx2afb72
MD5

7f755065cad905389dafe07f6e20e73f
SHA1

7f9e8c2f562b6188082fdbaf71c32f0da356dc96
SHA256

71d721537769fce1df1ccc3fd010a23655e558e90dadc50fb153cf3d5bfbccf3
SHA512

0e540fa60e52bec83d11c353ac5447586ca71534ec5d81b4f4be941ed28e363fbd380ede88a94b9d9d84e39486c11d9a45be6497bfe07a424fe436bc4faf2f92
SSDEEP

1536:A2WjO8XeEXFu5P7v88wbjNrfxCXhRoKV6+V+APIC:AZQ5PDwbjNrmAE+kIC

Score

10^/10

discordrat persistence rat rootkit stealer

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
https://canary.discord.com/api/webhooks/1246215833953505412/9uXKZChffplNEDpn0FQSblZ-X9VTnpusfXJXgPLFJdJTmsErgGeosG6esqtb_YHLiRZo
server_id
1246211698583670787

Targets

- Target
  
  Client-built.exe
- Size
  
  78KB
- MD5
  
  7f755065cad905389dafe07f6e20e73f
- SHA1
  
  7f9e8c2f562b6188082fdbaf71c32f0da356dc96
- SHA256
  
  71d721537769fce1df1ccc3fd010a23655e558e90dadc50fb153cf3d5bfbccf3
- SHA512
  
  0e540fa60e52bec83d11c353ac5447586ca71534ec5d81b4f4be941ed28e363fbd380ede88a94b9d9d84e39486c11d9a45be6497bfe07a424fe436bc4faf2f92
- SSDEEP
  
  1536:A2WjO8XeEXFu5P7v88wbjNrfxCXhRoKV6+V+APIC:AZQ5PDwbjNrmAE+kIC
Score

10^/10

discordrat persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer