discordrat | bf0b3dd6b17307d0a323586176281cc501b158768027c85ff34b803a323bba3e | Triage

Sharing

General

Target

bf0b3dd6b17307d0a323586176281cc501b158768027c85ff34b803a323bba3e
Size

26KB
MD5

739e211fd0cbdf4e604a29dd9f08ea53
SHA1

7b6bce651ccadc8b485f64bdf411e827a76af383
SHA256

bf0b3dd6b17307d0a323586176281cc501b158768027c85ff34b803a323bba3e
SHA512

175c423d76a2161df4022da349f2d6991e82e9347c5dbffca27871c3944bbee1743ebf4c627b2d2b5d34a19c5310a4763b24f80e39b8dc843d54db2aafd66dfa
SSDEEP

768:O5CfWRbXbM6751JJZMh3lZmygNbipPitt:O5CWXfTe3HCNM6tt

Score

10^/10

discordrat

Malware Config

Signatures

Discordrat family
discordrat

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/test4324324234.exe

Files

bf0b3dd6b17307d0a323586176281cc501b158768027c85ff34b803a323bba3e
.rar
test4324324234.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\maxim\Desktop\Discord rat c#\Discord rat\obj\Release\Discord rat.pdb

Sections

.text
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ