discordrat | be449362ee5003c6a1b6f73a7d3ef1b2d5b67c9eb57e317ab672df32fa8cf366 | Triage

Resubmissions

11-06-2024 20:55

240611-zqvzcs1epj 10

11-06-2024 20:51

240611-zne55a1emh 10

Sharing

General

Target

rblx hacks REAL.rar
Size

367KB
Sample

240611-zqvzcs1epj
MD5

0e9547daeef407dc9fd2be7976d60f8a
SHA1

e5dc59ef908599cbdfaf160d0c852cfd412afb92
SHA256

be449362ee5003c6a1b6f73a7d3ef1b2d5b67c9eb57e317ab672df32fa8cf366
SHA512

fcd410b6b7d8871a768736fbc8d9af9057a4273ccb0a015663002fb16efb6a853b2f0c36f3c2207b7b3efa623181ddad6de89f9e7a64a1ecedde53216fac67d5
SSDEEP

6144:f1LQ8IYLifq9M9dYc3oz/DEr3tGYRfS1lRQ6HD6Rj7+ApI6ODfsTLKxe1F8m75n:a8IYLifJ2zIYYRfERW+AaBfsfKcF1tn

Score

10^/10

discordrat persistence rat rootkit stealer

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTI0OTU3NzU3NDA5MTE5NDQxOQ.GsOG5Z.ZZXzRiXjjatxWtgj6vEvWrUD7fTQVKec_XOUKg
server_id
1177034497322127390

Targets

- Target
  
  rblx hacks REAL/Client-built.exe
- Size
  
  78KB
- MD5
  
  456bf5de813e40ca39898ca6ba16b1d7
- SHA1
  
  4b668377e4f81802f5a975739a2799d140e04d55
- SHA256
  
  9ea8612ee8a4e2599a73e99cee7afd8be19faedd655ff2f54b1f06e486021135
- SHA512
  
  7f3747235a0f48c774ad084207f43201dfdac9bc3bfd340f645cd7c13b61a853e01227756d1f9f154f5f541914c316b86fcbe1ab9a130aee117f17daab9b3191
- SSDEEP
  
  1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+nPIC:5Zv5PDwbjNrmAE+PIC
Score

10^/10

discordrat persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
- Executes dropped EXE
behavioral1 behavioral2
- Target
  
  rblx hacks REAL/dnlib.dll
- Size
  
  1.1MB
- MD5
  
  508ccde8bc7003696f32af7054ca3d97
- SHA1
  
  1f6a0303c5ae5dc95853ec92fd8b979683c3f356
- SHA256
  
  4758c7c39522e17bf93b3993ada4a1f7dd42bb63331bac0dcd729885e1ba062a
- SHA512
  
  92a59a2e1f6bf0ce512d21cf4148fe027b3a98ed6da46925169a4d0d9835a7a4b1374ba0be84e576d9a8d4e45cb9c2336e1f5bd1ea53e39f0d8553db264e746d
- SSDEEP
  
  24576:WHjoaczZfdE55hHl0WQ/OO4yb99MANKtv7f2dcME:tm/BQWgww
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer

behavioral2

discordratpersistenceratrootkitstealer

behavioral3

behavioral4