discordrat | 74b6089379acff9803a37c3b5e8bc86c5877a319c4ced5a714ff9c9c63905188 | Triage

Resubmissions

25-06-2024 14:50

240625-r7v2payhnn 10

25-06-2024 14:48

240625-r6e9vayhjr 10

25-06-2024 14:40

240625-r18zzayfjm 10

25-06-2024 14:36

240625-ryzzaaydqj 10

25-06-2024 14:34

240625-rxl12avhqa 10

Sharing

General

Target

zip.zip
Size

29KB
Sample

240625-rxl12avhqa
MD5

b05c33e2ae171f3931ca355e4820cf62
SHA1

8f4ae9550a75fa1cf46b282b03cdb4f809e4ffc6
SHA256

74b6089379acff9803a37c3b5e8bc86c5877a319c4ced5a714ff9c9c63905188
SHA512

fafa0f20f07d20bf99304a087d27bb478c630f4e74aac8969a150cacb89120a8cdcd726a98110088cd5b8352e56b8afa19811445eb5ce6b9598dacaa5ca79766
SSDEEP

768:f5lz6yZDgr9OtA8dozoBqiqVIte7aKxLe:fd2rqqiqN7aEe

Score

10^/10

discordrat persistence rat rootkit stealer

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTI1MzY2NzkzMTcwMzc0MjQ3NA.Gw8dsn.LeG778rjIzDyfb3CK-K3udb1GPBgWlxFwh_VdU
server_id
1250682422434074634

Targets

- Target
  
  cdumper/compiler.exe
- Size
  
  78KB
- MD5
  
  cc0c0d53ea855321b892e9d69ce09d1f
- SHA1
  
  604de3c919a7768f107e15c12c816ed11ea0146f
- SHA256
  
  cd28a30e4e7970b5fe7e2d2ab0244a41ed3fed048904d671ce2db28de1a87529
- SHA512
  
  58a7a3e9b374296d8898929a9c1806beb501e45c232efd11db1449583e8227b4a0511fc724d07be030baa640aa285ed7648ed1a328a40e47989b0d7673a4d609
- SSDEEP
  
  1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+SPIC:5Zv5PDwbjNrmAE+eIC
Score

10^/10

discordrat persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
- Legitimate hosting services abused for malware hosting/C2
behavioral1
- Target
  
  cdumper/setup.bat
- Size
  
  227B
- MD5
  
  82ef175ff28147dd54c430684b21f953
- SHA1
  
  31db11a88b88083a6631f8a71473e9188cac0a44
- SHA256
  
  850e2ced7c50f6f4c9fa16c569d47a5b48a27ef72e296382e87ef5f6606192ef
- SHA512
  
  0684c5a2fbd5f9e3afa6bc82cac7432ac60eb912ba5ddd251cd2c79dfadc2bb442ce7d5b00ab440c07d3780f47d3a50884c09cc6a2fa4ddb14dec4181705b888
Score

1^/10
behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer

behavioral2