General
-
Target
https://cdn.discordapp.com/attachments/1311791400278429846/1320889087766429766/Loader.rar?ex=676c8ed3&is=676b3d53&hm=d03c152de1c9153f71ed656cb14896e2a5528e707bbc7aebe6ac21da570bff41&
-
Sample
241224-3gfd4azrbz
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://cdn.discordapp.com/attachments/1311791400278429846/1320889087766429766/Loader.rar?ex=676c8ed3&is=676b3d53&hm=d03c152de1c9153f71ed656cb14896e2a5528e707bbc7aebe6ac21da570bff41&
Resource
win10v2004-20241007-en
Malware Config
Extracted
discordrat
-
discord_token
MTMyMDc2Nzc4Mzk2MDcwNzE2NA.GK0gUF.OU9WbYr2-yq_nxwfa3gKj0PhdIzzZqHZ5u2d-s
-
server_id
1308451255844077600
Targets
-
-
Target
https://cdn.discordapp.com/attachments/1311791400278429846/1320889087766429766/Loader.rar?ex=676c8ed3&is=676b3d53&hm=d03c152de1c9153f71ed656cb14896e2a5528e707bbc7aebe6ac21da570bff41&
Score10/10-
Discordrat family
-
Executes dropped EXE
-
Legitimate hosting services abused for malware hosting/C2
-