discordrat | 073a3a554da262e3ffaced7bc3940c5ae2024cb0f457fe539df980326ac6acc2 | Triage

Sharing

General

Target

Discord-Account-Generator-main (1).zip
Size

30KB
Sample

250104-rlx9xsvpfr
MD5

511362586d9aba19d383f896dde752df
SHA1

1a34f7708f083dea2c36e7ce46d0d7297f8c9d86
SHA256

073a3a554da262e3ffaced7bc3940c5ae2024cb0f457fe539df980326ac6acc2
SHA512

27147c22afba73a9027c52a840e5861452f11b65362a0fbe0f58df10f80c16d6d691f847a54c61384dc0c0371ef9b8988521271ea97e72e1c841041ec6d78a2e
SSDEEP

768:XV6FT9JtQIrogIzFapad2F9SCjoQzK9QPsx9bP4ZCg4c4Zfh9K:XV6FT9J284w9SC3sXbwZC3c4Zfh9K

Score

10^/10

discordrat discovery persistence rat rootkit stealer

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTI2MDQwNzQ1MjQyODUzMzgzMQ.GYv6Cs.bHorOgR3dzpv33F18dZaRpWKB43NnKIjozVcS8
server_id
1260407315073597510

Targets

- Target
  
  Discord-Account-Generator-main (1).zip
- Size
  
  30KB
- MD5
  
  511362586d9aba19d383f896dde752df
- SHA1
  
  1a34f7708f083dea2c36e7ce46d0d7297f8c9d86
- SHA256
  
  073a3a554da262e3ffaced7bc3940c5ae2024cb0f457fe539df980326ac6acc2
- SHA512
  
  27147c22afba73a9027c52a840e5861452f11b65362a0fbe0f58df10f80c16d6d691f847a54c61384dc0c0371ef9b8988521271ea97e72e1c841041ec6d78a2e
- SSDEEP
  
  768:XV6FT9JtQIrogIzFapad2F9SCjoQzK9QPsx9bP4ZCg4c4Zfh9K:XV6FT9J284w9SC3sXbwZC3c4Zfh9K
Score

1^/10
behavioral1 behavioral2
- Target
  
  Discord-Account-Generator-main/README.md
- Size
  
  851B
- MD5
  
  833c78aa768851b29b27401cc447881e
- SHA1
  
  8d6fe4948e739fb4e23005405e9c92fcbfc896fa
- SHA256
  
  b4c2b77d188500aca1b4a1a0fe96fb4a1a047272a2b3c51de34572a5f9c76ae5
- SHA512
  
  edf27c5890abd136782d02ad294dffd1d763e8e81ac3d6408ee5c35cca12eed249b5370010178a5df34f5dd3d17e9105dd90c8d606c2c7fe188c7b95bb53820a
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  Discord-Account-Generator-main/config.toml
- Size
  
  106B
- MD5
  
  e5df08cf728cbd0f88e14c02ecb57ba0
- SHA1
  
  39bce1f7ca0d28b85dd487295a05797afdb4d41e
- SHA256
  
  d925a830b53f697e8538712faaee91e259448410ab4ffd490d64d04c1ea0f413
- SHA512
  
  074795ff4e4d8eb23c964730c9c564e6ba06bb213dede890f0777244a066a1178783eff17459cb17627d4b6e092a470b8d77fc938fbbf2865400af5a6edc3124
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  Discord-Account-Generator-main/generated_tokens.txt
- Size
  
  47B
- MD5
  
  23cff894e45037b5f50007ee668683b8
- SHA1
  
  908ded0936645688e6d8ee5ad8ab053dbe831f46
- SHA256
  
  1b0474f5e6023ec11bd848c6419439a299fdd915cbdb26fd2be12dd7c7315adb
- SHA512
  
  c82c5905ea537fea852c4c240605872d3a59a54498da12a0db69d14ce5440756e739fc6ee6bd61e0267131a30684c04cfe8862b86d832376ff8340caf5d14161
Score

1^/10
behavioral7 behavioral8
- Target
  
  Discord-Account-Generator-main/main.exe
- Size
  
  78KB
- MD5
  
  2dfd2fba1022292bcd1867b126624260
- SHA1
  
  ef374c3639e3f28a8594e1385a0f45a8e51f2673
- SHA256
  
  954bf7c432eac4d4291b76b598fe25f28275800eb9d06fe7f3f0b53b41f72c74
- SHA512
  
  1cd7427295950491b627945c4f848906e3ee710e593033ed24638b7e29ace004b7ae8d3cfc7726b3e1dea53595336ba165b1fd5282f8637b047a50217238c9fc
- SSDEEP
  
  1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+GnPIC:5Zv5PDwbjNrmAE+gIC
Score

10^/10

discordrat discovery persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
- Discordrat family
  discordrat
behavioral10 behavioral9
- Target
  
  Discord-Account-Generator-main/src.py
- Size
  
  18KB
- MD5
  
  62943794fc12c82e22cccfba4fed4939
- SHA1
  
  5e56e9f3e240bf7f49f93ae312284b33ebd6f50f
- SHA256
  
  2313dcf0ef3bac0e1ec528b396b7aad090b815a3820021aeda1208e37d71d413
- SHA512
  
  f5fa024c3ccc3e15a048b88b16aeaf3fbe23d9201ebb36faa03e7ba94c8acabf7ed5adf45db83b1f67098608129d98267e09d8b5b21b7f049c285c95d656e8d4
- SSDEEP
  
  24:MffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffK:X
Score

3^/10

discovery
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

discordratpersistenceratrootkitstealer

behavioral10

discordratdiscoverypersistenceratrootkitstealer

behavioral11

behavioral12