discordrat | DoomedWorld[.]exe | Triage

Sharing

General

Target

DoomedWorld.exe
Size

78KB
MD5

8121de3645a1421d72afa83c8791951c
SHA1

9654de88957f4995899bfbf5ab2eedbbe95be12f
SHA256

98dd156638016b0abfb53a44dba4e8452b9b57bd0d9093c9995e88a9c6c7d750
SHA512

d75f84fb3330105af2feaa98a8352ad68a473bce22e848fea99a9b6cd0818199d786d3955e6960730074c05c1df23b5ca664dcc22bf8bf9553a1cb07a78a49df
SSDEEP

1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+gPIC:5Zv5PDwbjNrmAE+EIC

Score

10^/10

discordrat

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTI1NzAyMzI2NzMzNjc0OTExMA.GRRCqL.-hOLG_NYwHg-QndfQvaNfpmA9h6WqvK4pkfIS8
server_id
1257024430513848503

Signatures

Discordrat family
discordrat
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

DoomedWorld.exe

Files

DoomedWorld.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ