discordrat | fff1ccaf3ca4c20aa8d6b073cdc7df30858283136f1fea5a8ea1cf8242b3b5ed | Triage

Submit
Reports

Overview

overview

Static

static

3

injector.exe

windows11-21h2-x64

Sharing

General

Target

250222-z83rxszmbm_pw_infected.zip
Size

46KB
Sample

250222-1bymdazmfl
MD5

9cf648ccc8c64f8e814f23c88672c431
SHA1

42fb461c5bd9c4031f6af17f9f6b2c42fc4ddd8b
SHA256

fff1ccaf3ca4c20aa8d6b073cdc7df30858283136f1fea5a8ea1cf8242b3b5ed
SHA512

ba75f7c3055d1df45847413e2d46fc1a54e2973925fd40275dc5e88ff88ff974b10ae5b6a7bae27f4621be0d1c84d51e56fe2931854d525864fefb19bc750847
SSDEEP

768:zmyT/ANWBfKpl3GhX8VL+eMeOJRStb5KfSCpSLwwtv09vBzKNFMFzXQrCd4OnQ:zmdNeQ3GhsVL+eMeOJRSOFeCQoQ+qEQ

Score

10^/10

discordrat discovery persistence rat rootkit stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

injector.exe

Resource

win11-20250217-en

discordrat discovery persistence rat rootkit stealer

windows11-21h2-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  injector.exe
- Size
  
  51KB
- MD5
  
  9f562631367136e321378e43280678b7
- SHA1
  
  4c533ad60d4a01f8f2a40467792a3043f0a6d145
- SHA256
  
  da88d5bdbc4706ba58a4446d5ac74076c5b1588d79b0fe6b198b347f7ec2bfa1
- SHA512
  
  641f827c2b2b5bf3f6b909a16d138fa9c3c828ccc1b655882920a80f693ae79fa10eb4d642a5b93d197a6214c5668e2c60cfb7684eb8efe77b91b3e1ce7d83f0
- SSDEEP
  
  1536:8lVGpqIOrLyJspJfU7+cspAKEMMhWLGJ:8j8qpLa2cWo1
Score

10^/10

discordrat discovery persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
- Discordrat family
  discordrat
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discordratdiscoverypersistenceratrootkitstealer

© 2018-2025

Terms | Privacy