discordrat | IfUgetmytokenubitch[.]zip | Triage

Sharing

General

Target

IfUgetmytokenubitch.zip
Size

30KB
MD5

c964577807e64419b78079c2588e9595
SHA1

b8642c7646f99bb6515c41bba7a66ccfc75a6544
SHA256

bde7e71e4914ebdbbcba20ed4d835937a1ed8be0deedf93a4f5c39ce39e44455
SHA512

f87c11a20dbf2734b98a701dbf57192c040c334cc9b636b90905fcef1f9ae796943cf38919c1169eede5a92cb182a8722252203a890edfd06028425b335dbfc4
SSDEEP

768:k4fhQq3SqL68pm4/j6ygR7Ug89R9l9AbwwjQ:kFyL3TAW9R9l9AbfjQ

Score

10^/10

discordrat

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTI5Mjg0MzMwMDQ3ODI1NTIxMA.Grp0nq.IltV2goLIM_c10bpfATLRoFvn6NwJdH5SZVh-0
server_id
1295367246914261043

Signatures

Discordrat family
discordrat

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/If U get my token u bitch/SetupV04.exe

Files

IfUgetmytokenubitch.zip
.zip
If U get my token u bitch/SetupV04.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
If U get my token u bitch/bitchesGetMytoken.exe