discordrat | 1cc2614bca2ba956a8769885626ea266e2c801fc9d6406eb92c2d4d823e4f64a | Triage

Submit
Reports

Overview

overview

Static

static

1

life.json

windows11-21h2-x64

Sharing

General

Target

life.json
Size

94KB
Sample

240930-w7zr4azbnj
MD5

a6f113bbb73c55383df5665765897ac2
SHA1

1e135744ad28618490e9d14dd64051083e448af7
SHA256

1cc2614bca2ba956a8769885626ea266e2c801fc9d6406eb92c2d4d823e4f64a
SHA512

b66e26fc1a89dc5b712e55704360aa91e7b20e8d24406cff444342198c0c4b0bbad627dec1b9317255644c87bbab565fb06e5f0f744384e57b12307bed02328d
SSDEEP

192:Sfp/bBWBoV1QUa+SUBhSffS53RnmxSbnsDQLqPnxsXqQmq/d9Xs1oGu:MTBW2VxSUBhSC539mUbnsDQLqPxGH//T

Score

10^/10

discordrat discovery persistence rat rootkit stealer

Static task

static1

Behavioral task

behavioral1

Sample

life.json

Resource

win11-20240802-en

discordrat discovery persistence rat rootkit stealer

windows11-21h2-x64

19 signatures

1800 seconds

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTI4OTcwNjgwMDE5MDU4NzA0MQ.GLPbKO._bSSJm0gQWkbYqibHsDuqzcfNGezAcMtUoJS2g
server_id
1162176704329027645

Targets

- Target
  
  life.json
- Size
  
  94KB
- MD5
  
  a6f113bbb73c55383df5665765897ac2
- SHA1
  
  1e135744ad28618490e9d14dd64051083e448af7
- SHA256
  
  1cc2614bca2ba956a8769885626ea266e2c801fc9d6406eb92c2d4d823e4f64a
- SHA512
  
  b66e26fc1a89dc5b712e55704360aa91e7b20e8d24406cff444342198c0c4b0bbad627dec1b9317255644c87bbab565fb06e5f0f744384e57b12307bed02328d
- SSDEEP
  
  192:Sfp/bBWBoV1QUa+SUBhSffS53RnmxSbnsDQLqPnxsXqQmq/d9Xs1oGu:MTBW2VxSUBhSC539mUbnsDQLqPxGH//T
Score

10^/10

discordrat discovery persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
- Downloads MZ/PE file
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

discordratdiscoverypersistenceratrootkitstealer

© 2018-2025

Terms | Privacy