Overview

overview

10

Static

static

10

How to suc...is.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    How to suck your penis.exe

  • Size

    78KB

  • Sample

    240928-xs8bcs1hln

  • MD5

    c6cce4b09379172fcadc526309ca53dc

  • SHA1

    f13a8b4900fa5f6af919e44d6e96b2d6255385e5

  • SHA256

    bbb71e23e78c069bbdb12d9242ff44ca29de4914677b31ecdaa2384ae5b0edfb

  • SHA512

    713bb386eedbf2f8583398053d7b5f9bd304f26c26fd66b19c1864bf34dd696a503136b5119aa460265572cd88d4c5fba3f9f7c677e8b417d4c74501d5501126

  • SSDEEP

    1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+IPIC:5Zv5PDwbjNrmAE+MIC

Score
10/10
discordratpersistenceratrootkitspywarestealer

Malware Config

Extracted

Family

discordrat

Attributes
  • discord_token

    MTI4OTYzNjI3MDM1NTc3NTUzMA.Gqm-Uv.aC0cRHicTfbWOQlioKBGJHpqEMrqELTiN3D_zI

  • server_id

    1289664402252894249

Targets

    • Target

      How to suck your penis.exe

    • Size

      78KB

    • MD5

      c6cce4b09379172fcadc526309ca53dc

    • SHA1

      f13a8b4900fa5f6af919e44d6e96b2d6255385e5

    • SHA256

      bbb71e23e78c069bbdb12d9242ff44ca29de4914677b31ecdaa2384ae5b0edfb

    • SHA512

      713bb386eedbf2f8583398053d7b5f9bd304f26c26fd66b19c1864bf34dd696a503136b5119aa460265572cd88d4c5fba3f9f7c677e8b417d4c74501d5501126

    • SSDEEP

      1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+IPIC:5Zv5PDwbjNrmAE+MIC

    Score
    10/10
    discordratpersistenceratrootkitspywarestealer

    • Discord RAT

      A RAT written in C# using Discord as a C2.

      stealerrootkitratpersistencediscordrat

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks