Discord[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Discord.exe
Size

6.3MB
MD5

a2be7ab58819a347c2dd9682752c3eb5
SHA1

4faff1e344c7e7f1681a2d5e61d0acdac5a2761e
SHA256

de418e41df45f6a20f177fc25f503153b2544379d2b1ab66882ee6479baf3230
SHA512

9c06f4f0395446653eafc08ba1f029b32043d85bb5fcbb052b5a3b69909273431ebea5833d7722336cd4edc34a90c1fc52287d10036867c4f99fabe2e4b4facb
SSDEEP

196608:hKUDPXYKf8kyl18a4Je+1NQs95HqFtYNeR7:hHPXxJm1VissrHytYNeF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Discord.exe

Files

Discord.exe
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

Size: 300KB - Virtual size: 804KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 55KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 366KB - Virtual size: 676KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 13KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 10B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 8KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.imports
Size: 2KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 64KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 280KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

NULL
Size: - Virtual size: 9.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 5.3MB - Virtual size: 5.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 64KB

IMAGE_SCN_MEM_READ

.taggant
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

Size: 300KB - Virtual size: 804KB

Size: 55KB - Virtual size: 120KB

Size: 366KB - Virtual size: 676KB

Size: 13KB - Virtual size: 22KB

Size: 1KB - Virtual size: 8KB

Size: 10B - Virtual size: 24B

Size: 8KB - Virtual size: 280KB

Size: 1KB - Virtual size: 2KB

.imports Size: 2KB - Virtual size: 64KB

.tls Size: 512B - Virtual size: 64KB

.rsrc Size: 280KB - Virtual size: 280KB

NULL Size: - Virtual size: 9.0MB

.boot Size: 5.3MB - Virtual size: 5.3MB

.reloc Size: 512B - Virtual size: 64KB

.taggant Size: 8KB - Virtual size: 8KB

.imports
Size: 2KB - Virtual size: 64KB

.tls
Size: 512B - Virtual size: 64KB

.rsrc
Size: 280KB - Virtual size: 280KB

NULL
Size: - Virtual size: 9.0MB

.boot
Size: 5.3MB - Virtual size: 5.3MB

.reloc
Size: 512B - Virtual size: 64KB

.taggant
Size: 8KB - Virtual size: 8KB