General

  • Target

    Discord Hook.zip

  • Size

    192.2MB

  • MD5

    661019b307ad99f035db7e202d951fbd

  • SHA1

    59241b9376de9629c53277b98a0967897d248b44

  • SHA256

    8741832a598f9c2175d455fe526785717871af14c7e5d5628137db4e74eabd81

  • SHA512

    5e2be9c3abcaa0e2ffd46726a2a1d006a6b56f6c8a28f7d1fce264e6378175b32d8b69e4bc942daeb76fc6e425f59d7fe51cdfbd22558e2e272e53f1c69b3d7f

  • SSDEEP

    3145728:xOvr7hmJPb81xfeJmBeN5mi7iY1ynzvYGdxP+WjqXXzDWWgspLm:xOEJPwH0Tp+Y1ynzggJ+rXnpLm

Score
7/10

Malware Config

Signatures

  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • Discord Hook.zip
    .zip
  • discord_voice.rar
    .rar
  • capture_helper.exe
    .exe windows:6 windows x64 arch:x64

    b480bc4b77616640a8e65de66fa4ec00


    Code Sign

    Headers

    Imports

    Sections

  • discord_voice.node
    .dll windows:6 windows x64 arch:x64

    7f9d03dababaef80f8a1f690ce9bb6d6


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • gpu_encoder_helper.exe
    .exe windows:6 windows x64 arch:x64

    b3e3ae2a64e3bf025c8e45e72a7f7ee5


    Code Sign

    Headers

    Imports

    Sections

  • index.js
    .js
  • mediapipe.dll
    .dll windows:6 windows x64 arch:x64

    c131ba9dca7624ac089c3aa733ea2eaf


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • node_modules/.yarn-integrity
  • openh264-2.2.0-win64.dll
    .dll windows:6 windows x64 arch:x64

    98f946cee94de86ddbd8fd8f37522dfe


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • hook.dll
    .dll windows:6 windows x64 arch:x64

    fc8a5754f1fbe8934b51a4726e74eaac


    Headers

    Imports

    Sections

  • how to use a hook and how to detect itt .mp4
  • injector.exe
    .exe windows:6 windows x64 arch:x64

    8f18ef3a00bfd699ac5d69caeb261960


    Headers

    Imports

    Sections

  • leaked hook.txt