Overview

overview

8

Static

static

8

Discord-RA...nny.py

windows7-x64

3

Discord-RA...nny.py

windows10-2004-x64

3

Discord-RA...ld.bat

windows7-x64

6

Discord-RA...ld.bat

windows10-2004-x64

1

Discord-RA...ll.cmd

windows7-x64

1

Discord-RA...ll.cmd

windows10-2004-x64

1

Discord-RA...obf.py

windows7-x64

3

Discord-RA...obf.py

windows10-2004-x64

3

Discord-RA...px.exe

windows7-x64

7

Discord-RA...px.exe

windows10-2004-x64

7

Resubmissions

25/06/2024, 06:55

240625-hpxccsydpl 8

Sharing

Copy URL Twitter E-mail

General

  • Target

    Discord-RAT-main.zip

  • Size

    529KB

  • MD5

    b9a4270aabcf6fa1f25ea61196c9bb16

  • SHA1

    3c59e2f8833a62be95bb9897dbde22d3f1128942

  • SHA256

    ae8b831d59da8b708b52751638d11163f5c217ab875228572bd5041da073a930

  • SHA512

    7ee4a44949c08bc3981f1eb0b68f1cd0f75871d2dad94f03e489eb97ae7f81b4de994f3b4f154e4ca60ea59b987b59b7b231319bb49563d72efe33e4d4042510

  • SSDEEP

    12288:vM8K9G80iPAi52M7zIDBrqAItEGN61HJpA118J7rY/:0fvTbkrqAItD6b6D8J7k/

Score
8/10
upx

Malware Config

Signatures

  • Patched UPX-packed file 1 IoCs

    Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • Discord-RAT-main.zip
    .zip
  • Discord-RAT-main/README.md
  • Discord-RAT-main/Zenny.py
  • Discord-RAT-main/build.bat
  • Discord-RAT-main/install.cmd
  • Discord-RAT-main/obf.py
  • Discord-RAT-main/requirements.txt
  • Discord-RAT-main/upx.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections