discordrat | 634d4d89eb266344d7d11f4b2f5d01746b702d4ab2f683bad19c5e9f584fdcd1 | Triage

Submit
Reports

Overview

overview

Static

static

release.zip

windows10-ltsc 2021-x64

Sharing

General

Target

release.zip
Size

445KB
Sample

241208-vsx5aazmf1
MD5

bd299ffb365cf3024a956cc0d9fbba64
SHA1

1c5d97a244b89ab32b5687e3d580253ddc118aa2
SHA256

634d4d89eb266344d7d11f4b2f5d01746b702d4ab2f683bad19c5e9f584fdcd1
SHA512

3b1b66300a61bce81418bd9ee2f565fc6c4798a851ffbba211bd2a49960d484c7afbc270be6a05dc468a560faf23e7f8d9b2f1a1afd9cd878d60a5110852094c
SSDEEP

12288:BfJ13+GoLo2d5ifXHE8134QwYOwFSFRiLQt:BKGo8EifSQwYWt

Score

10^/10

discordrat discovery persistence rat rootkit stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

release.zip

Resource

win10ltsc2021-20241023-en

discordrat discovery persistence rat rootkit stealer

windows10-ltsc 2021-x64

13 signatures

300 seconds

Malware Config

Targets

- Target
  
  release.zip
- Size
  
  445KB
- MD5
  
  bd299ffb365cf3024a956cc0d9fbba64
- SHA1
  
  1c5d97a244b89ab32b5687e3d580253ddc118aa2
- SHA256
  
  634d4d89eb266344d7d11f4b2f5d01746b702d4ab2f683bad19c5e9f584fdcd1
- SHA512
  
  3b1b66300a61bce81418bd9ee2f565fc6c4798a851ffbba211bd2a49960d484c7afbc270be6a05dc468a560faf23e7f8d9b2f1a1afd9cd878d60a5110852094c
- SSDEEP
  
  12288:BfJ13+GoLo2d5ifXHE8134QwYOwFSFRiLQt:BKGo8EifSQwYWt
Score

10^/10

discordrat discovery persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
- Discordrat family
  discordrat
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discordratdiscoverypersistenceratrootkitstealer

© 2018-2024

Terms | Privacy