discordrat | 0a6a0baaf4774255ad58385d3e99c2978ab2bf1429071212a52345c5171555da | Triage

Submit
Reports

Overview

overview

Static

static

1

wow.zip

windows7-x64

Sharing

General

Target

wow.zip
Size

28KB
Sample

240613-ga6rtazdkk
MD5

a98c71bc37633b0339b7df3e131020a3
SHA1

a2db16bdbb7a8e061778762757379b9f0046ed50
SHA256

0a6a0baaf4774255ad58385d3e99c2978ab2bf1429071212a52345c5171555da
SHA512

fbe4d01746848b5d1c7d3d38f6645153f580a6b19675eea55d1bc64d096a98df216bf0271823a1fafc7f14e65f81bb148c3bdeeb4f35c7a12f3deffd21105a49
SSDEEP

768:Rhj5hbiKvyvHg3ibJtZfJZZ8xgJdbvb9cL4sDL2kAm:R9LmK6/g3i9tPhJdTe1Z

Score

10^/10

discordrat persistence rat rootkit stealer

Static task

static1

Behavioral task

behavioral1

Sample

wow.zip

Resource

win7-20240221-en

discordrat persistence rat rootkit stealer

windows7-x64

7 signatures

150 seconds

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTI1MDY4MDAwOTA1NjcxODg1OA.Gsgb1p.yKrTtjnMzEfZMtnNe8EGmYm3XDkNU2c5sOLJ5Y
server_id
1250638699088187392

Targets

- Target
  
  wow.zip
- Size
  
  28KB
- MD5
  
  a98c71bc37633b0339b7df3e131020a3
- SHA1
  
  a2db16bdbb7a8e061778762757379b9f0046ed50
- SHA256
  
  0a6a0baaf4774255ad58385d3e99c2978ab2bf1429071212a52345c5171555da
- SHA512
  
  fbe4d01746848b5d1c7d3d38f6645153f580a6b19675eea55d1bc64d096a98df216bf0271823a1fafc7f14e65f81bb148c3bdeeb4f35c7a12f3deffd21105a49
- SSDEEP
  
  768:Rhj5hbiKvyvHg3ibJtZfJZZ8xgJdbvb9cL4sDL2kAm:R9LmK6/g3i9tPhJdTe1Z
Score

10^/10

discordrat persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer

© 2018-2024

Terms | Privacy