discordrat | 8a1133fca1b901fcfc30def8281195377e0ca6b9aa3aea6761d3052bd158a8dd | Triage

Sharing

General

Target

Client-built.exe
Size

78KB
Sample

240716-r8efbsxfqk
MD5

7a00b5c817dd0b9474f4d240bcd31f43
SHA1

634b7287387198ed5a17b7871f4a997d70d0d11a
SHA256

8a1133fca1b901fcfc30def8281195377e0ca6b9aa3aea6761d3052bd158a8dd
SHA512

7266e58798bd41c996bf44ea1be451a35104d93a8394c10c50fa112f4842de24dccca989e04014d0e006212dd1f95bf91cf6691e8a54ec03aaae8b8300509f7f
SSDEEP

1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+zPIC:5Zv5PDwbjNrmAE+rIC

Score

10^/10

discordrat persistence rat rootkit stealer

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTIzMDUyMTczMDAyODUzNTg5OA.GXsfBL.GL3qISVGeFab0vYpCvUtoH7bg9zhMan1d7KAis
server_id
1262688535409070121

Targets

- Target
  
  Client-built.exe
- Size
  
  78KB
- MD5
  
  7a00b5c817dd0b9474f4d240bcd31f43
- SHA1
  
  634b7287387198ed5a17b7871f4a997d70d0d11a
- SHA256
  
  8a1133fca1b901fcfc30def8281195377e0ca6b9aa3aea6761d3052bd158a8dd
- SHA512
  
  7266e58798bd41c996bf44ea1be451a35104d93a8394c10c50fa112f4842de24dccca989e04014d0e006212dd1f95bf91cf6691e8a54ec03aaae8b8300509f7f
- SSDEEP
  
  1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+zPIC:5Zv5PDwbjNrmAE+rIC
Score

10^/10

discordrat persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer