IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

AnarchyGrabber hack steals Discord tokens, IDs and passwords

New trojan software corrupts Discord’s JavaScript files to get your private data

There’s a new trojan version of AnarchyGrabber that steals chatting app Discord passwords and tokens and disables the victim’s two-factor authentication. The malware also compromises accounts on other sites.

Trojan viruses are malicious malware that, despite their innocent appearance, slow your computer, steal user accounts and can cause other significant computer issues. This third version of AnarchyGrabber stalls your computer within minutes and evades detection by modifying client files.

Bleeping Computer reported, “earlier this week, a threat actor released a modified AnarchyGrabber trojan that contains new and powerful features.”

Malicious actors download AnarchyGrabber for free from hacker forums and YouTube videos that explain how to steal Discord user tokens. They distribute the malware on Discord, presenting it as a hacking tool, game cheat or copyrighted software. Once installed, the malware corrupts the user’s Discord JavaScript files, subsequently taking over the site.

You can check whether you’ve been hacked through the following two steps:

First, use Notepad to open Discord's index.js file in %AppData%\Discord\[version]\modules\discord_desktop_core. Second, check for the following code: “module.exports = require('./core.asar')”. If you’re unfortunate enough to have that, you’ve been hacked.

What now? PCMalware.com guides you through two options to delete AnarchyGrabber. It urges you to act the moment you suspect your system has been infected.

Josh Ross, IT enthusiast, told IT Pro: “If you do not care about your files, programs or any other work that you may have on your PC, I would recommend doing a full clean reinstall of your Windows, and you are good to go.

"A more complicated way would be a thorough cleanup of your PC. I recommend installing some form of Adblock on your PC just to get rid of ad-spread malware and trojans.”

Avoid AnarchyGrabber by ignoring emails that come with subject lines such as “Urgent”, “Act Now” or “Best Price.” Also disregard attachments from spurious or unknown email senders.

Featured Resources

Accelerating AI modernisation with data infrastructure

Generate business value from your AI initiatives

Free Download

Recommendations for managing AI risks

Integrate your external AI tool findings into your broader security programs

Free Download

Modernise your legacy databases in the cloud

An introduction to cloud databases

Free Download

Powering through to innovation

IT agility drive digital transformation

Free Download

Recommended

LockBit 2.0 ransomware disguised as PDFs distributed in email attacks
Security

LockBit 2.0 ransomware disguised as PDFs distributed in email attacks

27 Jun 2022
Hackers use Linux backdoor on compromised e-commerce sites with software skimmer
malware

Hackers use Linux backdoor on compromised e-commerce sites with software skimmer

19 Nov 2021
Iranian hackers ramp up attacks against IT services sector
hacking

Iranian hackers ramp up attacks against IT services sector

19 Nov 2021
TikTok phishing campaign tried to scam over 125 influencer accounts
social media

TikTok phishing campaign tried to scam over 125 influencer accounts

18 Nov 2021

Most Popular

Former Uber security chief to face fraud charges over hack coverup
data breaches

Former Uber security chief to face fraud charges over hack coverup

29 Jun 2022
Macmillan Publishers hit by apparent cyber attack as systems are forced offline
Security

Macmillan Publishers hit by apparent cyber attack as systems are forced offline

30 Jun 2022
FCC commissioner urges Apple and Google to remove TikTok from app stores
data protection

FCC commissioner urges Apple and Google to remove TikTok from app stores

29 Jun 2022