Expert On AnarchyGrabber Trojan Update Stealing Discord Clients Passwords

Hackers have updated the AnarchyGrabber trojan to a new version which is capable of stealing passwords and user tokens, disabling 2FA and spreading malware to a victim’s friends as well.

AnarchyGrabber is distributed for free on hacking forums and in YouTube videos and the trojan is used by cybercriminals on Discord who claim it is a game cheat, hacking tool or copyrighted software. Instead it modifies the Discord client’s JavaScript files to turn it into malware that can steal a victim’s Discord user token which is then used by an attacker to log into the popular chat service as the victim.


EXPERTS COMMENTS
Dr. Muhammad Malik, Editor-in-Chief,  Information Security Buzz
May 29, 2020
If infected, it is best practice to uninstall the current version and download the updated version from the Discord site and install it.
This popular Trojan malware has been updated by hackers to modify the chat platform Discord client’s %AppData%\m\Discord\[version]\modules\discord_desktop_core\index.js file upon successful installation and this will give the malware ability to load JavaScript files. The updated AnarchyGrabber trojan has the capability to steal passwords and user tokens on this popular chat platform, spreading a ....
[Read More >>]
Michael Barragry, Operations Lead and Security Consultant ,  Edgescan
May 27, 2020
Clients which have a dependency upon Javascript are especially attractive targets for attackers given the versatility.
Although previous versions have been blocked by anti-virus, newer versions appear to have been able to bypass anti-virus signature detection. Clients which have a dependency upon Javascript are especially attractive targets for attackers given the versatility that Javascript offers. Registered users should examine the Discord Javascript index.js file as outlined in the linked article for signs o ....
[Read More >>]

If you are an expert on this topic:

Submit Your Expert Comments


In this article