discordrat | 3aaaeeb54b1a0b2dbfc1a598cc7b955f410c92598b8989595033ba10800b9f56 | Triage

Submit
Reports

Overview

overview

Static

static

1

hey.txt

windows11-21h2-x64

Resubmissions

30-06-2024 04:13

240630-etefkatenc 1

29-06-2024 23:12

240629-26y23asdlk 10

29-06-2024 22:59

240629-2yv1fayejb 10

Sharing

General

Target

hey.txt
Size

118B
Sample

240629-2yv1fayejb
MD5

d466352784b8f01440ae607b001e3919
SHA1

163e3d87e84b7b74c5c612d9a86c029c32f1b3d9
SHA256

3aaaeeb54b1a0b2dbfc1a598cc7b955f410c92598b8989595033ba10800b9f56
SHA512

532622b9a459caeb6432a5d13f24a05c6c665e5207aa350356e079f81a286a0876ea25872628f948ebda3319c039e2a697083a37e72c2c2329c24a8dc2255d83

Score

10^/10

discordrat persistence rat rootkit stealer

Static task

static1

Behavioral task

behavioral1

Sample

hey.txt

Resource

win11-20240611-en

discordrat persistence rat rootkit stealer

windows11-21h2-x64

15 signatures

1200 seconds

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTI1NjcyNDgxOTk0NTE5NzU3MA.GYJhy6.Km8cn1qtZGfDDPaCiMubtGhlUypWOcHVwmlioY
server_id
1256724819945197570

Targets

- Target
  
  hey.txt
- Size
  
  118B
- MD5
  
  d466352784b8f01440ae607b001e3919
- SHA1
  
  163e3d87e84b7b74c5c612d9a86c029c32f1b3d9
- SHA256
  
  3aaaeeb54b1a0b2dbfc1a598cc7b955f410c92598b8989595033ba10800b9f56
- SHA512
  
  532622b9a459caeb6432a5d13f24a05c6c665e5207aa350356e079f81a286a0876ea25872628f948ebda3319c039e2a697083a37e72c2c2329c24a8dc2255d83
Score

10^/10

discordrat persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer

© 2018-2024

Terms | Privacy