General
-
Target
Fortnite-FPS-Unlocker.exe
-
Size
78KB
-
MD5
ba1b5983e81c92a49c4c0c7ff98f1519
-
SHA1
306bd8fe2f7c04e7f04396a85c130ab235638d2c
-
SHA256
fe1c312b2071ddf159bd24444db7fc9c412a98b4d4588d20b74306c20cbdc095
-
SHA512
d35d4e7fd0ab1ebcd9cc82986ae7f802f63445ad3a5f45695cb8c5360f77690af1e0df6cd5a18f42ed194bb60036e276a29a93e82e154fb6c564bae2dde7687f
-
SSDEEP
1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+kPIC:5Zv5PDwbjNrmAE+4IC
Malware Config
Extracted
discordrat
-
discord_token
MTE5MTU0MjY4ODIyNzUzNjkyNg.GV7ijy.GJ3lUYaafwQp_QFtJhkUYhAa3zzXvAyC-gdKow
-
server_id
1182499349087911966
Signatures
-
Discordrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Fortnite-FPS-Unlocker.exe
Files
-
Fortnite-FPS-Unlocker.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 76KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ