Overview

overview

10

Static

static

10

Client-built.exe

windows10-ltsc 2021-x64

10

Resubmissions

31-01-2025 12:55

250131-p5775awlew 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Client-built.exe

  • Size

    78KB

  • Sample

    250131-p5775awlew

  • MD5

    bdd15fd36f169d01f060343ab895531b

  • SHA1

    abe280800f095a1b915c43c9076997ac3f0bbe9d

  • SHA256

    0141236858e4053046889eaffb816882c7e4b80b113e9111d159b52dab318516

  • SHA512

    f05db5c90db19ff34ca836ca906216b4cc52ac09c7c55d0482b2c1b71c398d3d70296dd07dc02c45a2a7ba243a970fa969ea5aa1606c4d00b04bd24cbd282110

  • SSDEEP

    1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+hPIC:5Zv5PDwbjNrmAE+xIC

Score
10/10
discordratpersistenceratrootkitspywarestealer

Malware Config

Extracted

Family

discordrat

Attributes
  • discord_token

    MTMzNDg2ODQ0OTQ4MjI0ODI1NA.GIkc8R.EzznDmSguUjpMP876y07cZbo71yP_fd9iHveHA

  • server_id

    1334868116416761927

Targets

    • Target

      Client-built.exe

    • Size

      78KB

    • MD5

      bdd15fd36f169d01f060343ab895531b

    • SHA1

      abe280800f095a1b915c43c9076997ac3f0bbe9d

    • SHA256

      0141236858e4053046889eaffb816882c7e4b80b113e9111d159b52dab318516

    • SHA512

      f05db5c90db19ff34ca836ca906216b4cc52ac09c7c55d0482b2c1b71c398d3d70296dd07dc02c45a2a7ba243a970fa969ea5aa1606c4d00b04bd24cbd282110

    • SSDEEP

      1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+hPIC:5Zv5PDwbjNrmAE+xIC

    Score
    10/10
    discordratpersistenceratrootkitspywarestealer

    • Discord RAT

      A RAT written in C# using Discord as a C2.

      stealerrootkitratpersistencediscordrat

    • Discordrat family

      discordrat

    • Downloads MZ/PE file

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks