discordrat | 51cf3e36a04183bc40cb0c934c4323e8378113c25e60debe7cfa34e964214e1e | Triage

Submit
Reports

Overview

overview

Static

static

backdoor.exe

windows7-x64

backdoor.exe

windows10-2004-x64

Sharing

General

Target

backdoor.exe
Size

78KB
Sample

240630-rjn88sygmh
MD5

4acb8a72e208374ffcb845ff287231d8
SHA1

51b078a626f7013eac29f4731f3ca48087fda5ed
SHA256

51cf3e36a04183bc40cb0c934c4323e8378113c25e60debe7cfa34e964214e1e
SHA512

928cc8c8dcf687f47cccdce951637a55929a817fa03547747459df293b46b8496b25b5d548628d9b3b5e8671a1d075b83b4b8b42417b4a90113c1ffd441de88d
SSDEEP

1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+lPIC:5Zv5PDwbjNrmAE+1IC

Score

10^/10

discordrat persistence rat rootkit stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

backdoor.exe

Resource

win7-20240508-en

discordrat persistence rat rootkit stealer

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

backdoor.exe

Resource

win10v2004-20240508-en

discordrat persistence rat rootkit stealer

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTI1Njg4MzE3NzgyMjM1NTQ5Ng.GYuUPW.yZl7nGjcYNgqFBMj9gzZyn9Lsm1XVtBAVvay6Q
server_id
1256880554956296272

Targets

- Target
  
  backdoor.exe
- Size
  
  78KB
- MD5
  
  4acb8a72e208374ffcb845ff287231d8
- SHA1
  
  51b078a626f7013eac29f4731f3ca48087fda5ed
- SHA256
  
  51cf3e36a04183bc40cb0c934c4323e8378113c25e60debe7cfa34e964214e1e
- SHA512
  
  928cc8c8dcf687f47cccdce951637a55929a817fa03547747459df293b46b8496b25b5d548628d9b3b5e8671a1d075b83b4b8b42417b4a90113c1ffd441de88d
- SSDEEP
  
  1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+lPIC:5Zv5PDwbjNrmAE+1IC
Score

10^/10

discordrat persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer

behavioral2

discordratpersistenceratrootkitstealer

© 2018-2024

Terms | Privacy