General
-
Target
pass_barrotes.zip
-
Size
28KB
-
MD5
0e80f8c06cbad96ff9efab069c0ffcb8
-
SHA1
c1aae69235526933444ac0b82007f8e9c6c0f835
-
SHA256
a9db5789f45cd9f605968531d33c01990f6822f1b8ba966332acd5e5f8f8e980
-
SHA512
1aa06b73c18bd65350cf7594b4922a01c6aa33f1fa509575611f5a9c98c1b231643c40695b5e336720d8ec6a07c0d20be5f15677a6fc85af62a5833800695dea
-
SSDEEP
384:Vc+laWpqmyF2ZV5i9oOTP4hAgzoWPqdbB5z76lPW7ui+d066jW9QqXCrwMjYUMbp:VcIoiVY9ocP4hAgUfBJ76TvxSr/EUu9L
Score
10/10
Malware Config
Extracted
Family
discordrat
Attributes
-
discord_token
MTMxNzE1MTMxMDMxMDY3NDQ1Mw.G4vdtT.2Xaw0SLq-8xqoRh1THgonbntua-rEIma7FhcgY
-
server_id
1317163923350487151
Signatures
-
Discordrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
pass_barrotes.zip
Password: barrotes
-
barrotes.exe
Password: barrotes
Headers
Sections