A discord token stealer that I was sent.
The main file being Midlight_Cord.exe
, but has also been seen under other names
VirusTotal: https://www.virustotal.com/gui/file/1b4e64fa51d6b755c7f0b0fcc54dc681b3438d4aa1c74027812138a70b722a04 Hybrid Analysis: https://www.hybrid-analysis.com/sample/1b4e64fa51d6b755c7f0b0fcc54dc681b3438d4aa1c74027812138a70b722a04/61747d2a58328966f5001fe6
contacts primefa.xyz
-> ec2-3-132-67-147.us-east-2.compute.amazonaws.com
-> 3.132.67.147