discordrat | 0c0f47364cb9885178c3d77256765f8437fea48f179d37e77c5d5a65698f02a5 | Triage

Sharing

General

Target

Client-built.exe
Size

78KB
Sample

250212-yzmtnsxqat
MD5

4faaee9b445a18c4664a30e9a7426994
SHA1

5ec8234d588a5eb74de2bb89767354e19498b251
SHA256

0c0f47364cb9885178c3d77256765f8437fea48f179d37e77c5d5a65698f02a5
SHA512

784cd43a59fc211ef77e7f4fc36a405026b2eb6a447817a1aceba4400038b0fe59505adf4648daf4e0067ceaf7d3e6304217347b536ca8b802dda844dcecc583
SSDEEP

1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+2PIC:5Zv5PDwbjNrmAE+yIC

Score

10^/10

discordrat discovery persistence rat rootkit stealer

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTMzNjA3NTc5NDA0ODM1MjMwNg.Gjqoee.G1v3a2UFpmsqosT6AenFDxQsXb90GaAR1kcWHk
server_id
1336387838346002452

Targets

- Target
  
  Client-built.exe
- Size
  
  78KB
- MD5
  
  4faaee9b445a18c4664a30e9a7426994
- SHA1
  
  5ec8234d588a5eb74de2bb89767354e19498b251
- SHA256
  
  0c0f47364cb9885178c3d77256765f8437fea48f179d37e77c5d5a65698f02a5
- SHA512
  
  784cd43a59fc211ef77e7f4fc36a405026b2eb6a447817a1aceba4400038b0fe59505adf4648daf4e0067ceaf7d3e6304217347b536ca8b802dda844dcecc583
- SSDEEP
  
  1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+2PIC:5Zv5PDwbjNrmAE+yIC
Score

10^/10

discordrat persistence rat rootkit stealer discovery
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
- Discordrat family
  discordrat
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer

behavioral2

discordratdiscoverypersistenceratrootkitstealer