discordrat | 2156d6f172acbc05fc59ce50ca13c6c676a084c63246d48f5c3ff96497c8d10d | Triage

Sharing

General

Target

Client-built.exe
Size

78KB
Sample

240612-jnammsvdph
MD5

7c20e0c92b9a3ddb0b0c97e5b519c5bd
SHA1

70a6c31edaeb7e6f4bf72cb0cdfb8da8a0ffe9e0
SHA256

2156d6f172acbc05fc59ce50ca13c6c676a084c63246d48f5c3ff96497c8d10d
SHA512

defd172cf8f0df491df51ebf7bd46a717d6ce6ad54f4e7235704a022b6dba110782e09f8d82e15649ee2ea7d9c3d34076eb114b58b6c071eba730832c1856a45
SSDEEP

1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+oPIC:5Zv5PDwbjNrmAE+sIC

Score

10^/10

discordrat persistence rat rootkit stealer

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTI0NTQ1NjE5NTk2MDA0NTU4OQ.G-cE5Y.Jrz_bFmc_kkw6BRByxqyLwYoBCknjrUGADfFGU
server_id
1245410495406674023

Targets

- Target
  
  Client-built.exe
- Size
  
  78KB
- MD5
  
  7c20e0c92b9a3ddb0b0c97e5b519c5bd
- SHA1
  
  70a6c31edaeb7e6f4bf72cb0cdfb8da8a0ffe9e0
- SHA256
  
  2156d6f172acbc05fc59ce50ca13c6c676a084c63246d48f5c3ff96497c8d10d
- SHA512
  
  defd172cf8f0df491df51ebf7bd46a717d6ce6ad54f4e7235704a022b6dba110782e09f8d82e15649ee2ea7d9c3d34076eb114b58b6c071eba730832c1856a45
- SSDEEP
  
  1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+oPIC:5Zv5PDwbjNrmAE+sIC
Score

10^/10

discordrat persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer