discordrat | c13a0cd7c2c2fd577703bff026b72ed81b51266afa047328c8ff1c4a4d965c97 | Triage

Submit
Reports

Overview

overview

Static

static

release.zip

windows10-2004-x64

Resubmissions

03-07-2024 18:28

240703-w4qd9asblp 10

03-07-2024 17:34

240703-v5gcaszfrn 10

03-07-2024 17:28

240703-v1z9lszenm 10

Sharing

General

Target

release.zip
Size

445KB
Sample

240703-w4qd9asblp
MD5

06a4fcd5eb3a39d7f50a0709de9900db
SHA1

50d089e915f69313a5187569cda4e6dec2d55ca7
SHA256

c13a0cd7c2c2fd577703bff026b72ed81b51266afa047328c8ff1c4a4d965c97
SHA512

75e5f637fd3282d088b1c0c1efd0de8a128f681e4ac66d6303d205471fe68b4fbf0356a21d803aff2cca6def455abad8619fedc8c7d51e574640eda0df561f9b
SSDEEP

12288:BfJ13+GoLo2d5ifXHE8134QwYOwFSFRiLQI:BKGo8EifSQwYWI

Score

10^/10

discordrat persistence rat rootkit stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

release.zip

Resource

win10v2004-20240508-en

discordrat persistence rat rootkit stealer

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  release.zip
- Size
  
  445KB
- MD5
  
  06a4fcd5eb3a39d7f50a0709de9900db
- SHA1
  
  50d089e915f69313a5187569cda4e6dec2d55ca7
- SHA256
  
  c13a0cd7c2c2fd577703bff026b72ed81b51266afa047328c8ff1c4a4d965c97
- SHA512
  
  75e5f637fd3282d088b1c0c1efd0de8a128f681e4ac66d6303d205471fe68b4fbf0356a21d803aff2cca6def455abad8619fedc8c7d51e574640eda0df561f9b
- SSDEEP
  
  12288:BfJ13+GoLo2d5ifXHE8134QwYOwFSFRiLQI:BKGo8EifSQwYWI
Score

10^/10

discordrat persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
- Executes dropped EXE
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer

© 2018-2024

Terms | Privacy