discordrat | 9756ee53e23f0d4b0b99395167020ee817d255c686b5643aee5540a274e7d6e6 | Triage

Sharing

General

Target

Client-built.exe
Size

78KB
Sample

240706-hfcatsygrp
MD5

c2efae565750c5e4840301c5cec67460
SHA1

ea1499fac62658c92b770423e934063d4a2a9f78
SHA256

9756ee53e23f0d4b0b99395167020ee817d255c686b5643aee5540a274e7d6e6
SHA512

236b0273e0c7310d8a88068559a074793b7a3f1e7497b69a78674030cb4a021d22e2a02147a5f678a440a16f98c96bd2bc57ce69284f1e37ae05b530805f16ee
SSDEEP

1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+5PIC:5Zv5PDwbjNrmAE+JIC

Score

10^/10

discordrat persistence rat rootkit stealer

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTIzODk5NzI3ODYzMTM5NTM3OQ.Gn6NJ3.UNQS-_aC6k865Ijqu9IYLq9yL7LUhlTZGAmiu8
server_id
1259016982901293077

Targets

- Target
  
  Client-built.exe
- Size
  
  78KB
- MD5
  
  c2efae565750c5e4840301c5cec67460
- SHA1
  
  ea1499fac62658c92b770423e934063d4a2a9f78
- SHA256
  
  9756ee53e23f0d4b0b99395167020ee817d255c686b5643aee5540a274e7d6e6
- SHA512
  
  236b0273e0c7310d8a88068559a074793b7a3f1e7497b69a78674030cb4a021d22e2a02147a5f678a440a16f98c96bd2bc57ce69284f1e37ae05b530805f16ee
- SSDEEP
  
  1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+5PIC:5Zv5PDwbjNrmAE+JIC
Score

10^/10

discordrat persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer

behavioral2

discordratpersistenceratrootkitstealer