discordrat | ad65893e82f5a3b3f0b9bb60f77f8783268576386ac07e3e949027634c361fb0 | Triage

Sharing

General

Target

EiRat.exe
Size

78KB
Sample

241204-2pjaaa1lcm
MD5

6d729143f3a7d127650ede08eca4b304
SHA1

ee7a0d562f1b2f507e9e00ebf245455025096997
SHA256

ad65893e82f5a3b3f0b9bb60f77f8783268576386ac07e3e949027634c361fb0
SHA512

b6300372b234f3fb6729a8a76a3a19db956b4a8b4b3849879bf082437b3a076c7f43b9cc855538c8ed228d09fb3a5fb8b1ea4a206ef7e619deb6b7e8a460e6cb
SSDEEP

1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+DPIC:5Zv5PDwbjNrmAE+bIC

Score

10^/10

discordrat persistence rat rootkit stealer

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTMxMzk5NDc2OTY3MTY1MTQ1OA.GT7NjM.K6xxr_k2IxFfcMDllAz-2jBS0_JbzohWjhkbKs
server_id
1313832050054402099

Targets

- Target
  
  EiRat.exe
- Size
  
  78KB
- MD5
  
  6d729143f3a7d127650ede08eca4b304
- SHA1
  
  ee7a0d562f1b2f507e9e00ebf245455025096997
- SHA256
  
  ad65893e82f5a3b3f0b9bb60f77f8783268576386ac07e3e949027634c361fb0
- SHA512
  
  b6300372b234f3fb6729a8a76a3a19db956b4a8b4b3849879bf082437b3a076c7f43b9cc855538c8ed228d09fb3a5fb8b1ea4a206ef7e619deb6b7e8a460e6cb
- SSDEEP
  
  1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+DPIC:5Zv5PDwbjNrmAE+bIC
Score

10^/10

discordrat persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
- Discordrat family
  discordrat
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer