discordrat | a000d5b242c287ec8b1897e4e6dda734cc4615e2b7ff3a50440c753d78ce47bc | Triage

Sharing

General

Target

luna executor (1).rar
Size

28KB
Sample

250417-zwy8zastd1
MD5

a65062bf1044221314634aa9fafebc6b
SHA1

fdcb807290b57f0ebbb9a3bc12792b8a65c1053b
SHA256

a000d5b242c287ec8b1897e4e6dda734cc4615e2b7ff3a50440c753d78ce47bc
SHA512

074edd1b97d056586eece291c767a10305416059b8e4eadae7172fc16b8e12f692a83cfd5d8e99b6e3e078a6fc46e74732d7d5f4e7d89fcd2f9a1db3f5ae4bcd
SSDEEP

384:osYejZmEmE7KXX6cQyztVXgrYINy9HpxDpNYyHkgs+2tjPsQOp1ygR89FoUZq2TV:osxl/66Wub6b1s+SzsR1JRyGObTqc

Score

10^/10

discordrat discovery persistence rat rootkit stealer

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTM2MjQ4NDQ3NDg1OTc1MzU3Mg.G6F0XN.VLF6L9woFXrcJqvnK2pSc21C4w5iXBv79eVBjs
server_id
1362170836378845274

Targets

- Target
  
  Roblox executor.exe
- Size
  
  78KB
- MD5
  
  d4492c91b127b304f924edabe3213cec
- SHA1
  
  33569c0c910c1738873bea8cdb2652aa4335ac43
- SHA256
  
  f975182341f7800acdb358b504cf753c9bb54d9055b22e7a423ce04a7e583a98
- SHA512
  
  b25d18814f69098d70a9d6532f41b2e108821281aff4466a2b9e1bab533a13dd21a3cb168688a905425c19cfe5d3994d5bc14d6c7345ddb53c8c9ab7496948c2
- SSDEEP
  
  1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+fPIC:5Zv5PDwbjNrmAE+nIC
Score

10^/10

discordrat discovery persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
- Discordrat family
  discordrat
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2
- Target
  
  boostrapper.dll
- Size
  
  5KB
- MD5
  
  96ba0a444d087ae06f32319ca4f0a3e4
- SHA1
  
  e3e08973b3d47c1ad51ccb133315b6242e275f0f
- SHA256
  
  4d3ee9059f5b98ab1806f6916ebea2a8c56023f8c63ddfd80b7378d27d1aa0f6
- SHA512
  
  571d4083c76428d8c3914b2bc1281cc79ed4603b5fe0e3e82ee58dad488fcfe7f797a45b0ea7f14841a2a100656f059c186b7338ce33beb910cdddbf9ee70cbb
- SSDEEP
  
  96:ECf+lbD5X5LPXCazYV5Lv6K6uOidfaxwsxuUPFC3qxdRMvDbu8KsrbEKAy202lUt:Zf+tLPfYnLvFVOiFQaUD7Ut
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

discordratdiscoverypersistenceratrootkitstealer

behavioral2

discordratpersistenceratrootkitstealer

behavioral3

behavioral4