Overview

overview

10

Static

static

10

DiscordBot...64.exe

ubuntu-24.04-amd64

$PLUGINSDI...er.dll

ubuntu-24.04-amd64

$PLUGINSDI...ls.dll

ubuntu-24.04-amd64

$PLUGINSDI...em.dll

ubuntu-24.04-amd64

$PLUGINSDI...ll.dll

ubuntu-24.04-amd64

resources/...ags.js

ubuntu-24.04-amd64

3

resources/...eld.js

ubuntu-24.04-amd64

3

resources/...hop.js

ubuntu-24.04-amd64

3

resources/...nts.js

ubuntu-24.04-amd64

3

resources/...nts.js

ubuntu-24.04-amd64

3

resources/...ata.js

ubuntu-24.04-amd64

3

resources/...oto.js

ubuntu-24.04-amd64

3

resources/...til.js

ubuntu-24.04-amd64

3

resources/...ges.js

ubuntu-24.04-amd64

3

resources/...ges.js

ubuntu-24.04-amd64

3

resources/...ags.js

ubuntu-24.04-amd64

3

resources/...tch.js

ubuntu-24.04-amd64

3

resources/...cts.js

ubuntu-24.04-amd64

3

resources/...til.js

ubuntu-24.04-amd64

3

resources/...ver.js

ubuntu-24.04-amd64

3

resources/...nts.js

ubuntu-24.04-amd64

3

resources/...oad.js

ubuntu-24.04-amd64

3

resources/...ent.js

ubuntu-24.04-amd64

3

resources/...ase.js

ubuntu-24.04-amd64

3

resources/...ges.js

ubuntu-24.04-amd64

3

resources/...ngs.js

ubuntu-24.04-amd64

3

resources/...ngs.js

ubuntu-24.04-amd64

3

resources/...dex.js

ubuntu-24.04-amd64

3

resources/...dex.js

ubuntu-24.04-amd64

3

$PLUGINSDI...ec.dll

ubuntu-24.04-amd64

$PLUGINSDI...7z.dll

ubuntu-24.04-amd64

$R0/Uninst...nt.exe

ubuntu-24.04-amd64

Analysis

  • max time kernel
    0s
  • max time network
    130s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    01-02-2025 16:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    resources/app/AppAssets/DiscordShop.js

  • Size

    741KB

  • MD5

    8cf40ade0b0e7ebe0f4023af2d2f60eb

  • SHA1

    2038013f56975d529ec101a3eefc952feb2999b2

  • SHA256

    3f1d8e3fd7dd64d2e4acc833a68f606aaca9a14837af9b2c91a49e745b82d5f2

  • SHA512

    4984697038b53594302af5d5471841c78ed4704294a2f66fdd73da1f4d30ddea457bf72283f5cfd3c9f13e9b6179be07a3c5df520deca35d56543cc2cc7f5840

  • SSDEEP

    3072:4r0Cq83hxb29JYj8nvK0BkkvrEVr5Mr+DC4+Clh:4r0CNsYj8nvK0HvrEVr5Mr+DC4+Clh

Score
3/10
discoveryexecution

Malware Config

Signatures

  • Command and Scripting Interpreter: JavaScript 1 TTPs 1 IoCs

    Execution via JavaScript.

    execution
  • Enumerates kernel/hardware configuration 1 TTPs 2 IoCs

    Reads contents of /sys virtual filesystem to enumerate system information.

    discovery
  • Reads runtime system information 3 IoCs

    Reads data from /proc virtual filesystem.

    discovery

Processes

  • /usr/bin/node
    node /tmp/resources/app/AppAssets/DiscordShop.js
    1⤵
    • Command and Scripting Interpreter: JavaScript
    • Enumerates kernel/hardware configuration
    • Reads runtime system information
    PID:2532

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads