AnarchyGrabber hack steals Discord tokens, IDs and passwords

New trojan software corrupts Discord’s JavaScript files to get your private data

There’s a new trojan version of AnarchyGrabber that steals chatting app Discord passwords and tokens and disables the victim’s two-factor authentication. The malware also compromises accounts on other sites.

Trojan viruses are malicious malware that, despite their innocent appearance, slow your computer, steal user accounts and can cause other significant computer issues. This third version of AnarchyGrabber stalls your computer within minutes and evades detection by modifying client files.

Bleeping Computer reported, “earlier this week, a threat actor released a modified AnarchyGrabber trojan that contains new and powerful features.”

Malicious actors download AnarchyGrabber for free from hacker forums and YouTube videos that explain how to steal Discord user tokens. They distribute the malware on Discord, presenting it as a hacking tool, game cheat or copyrighted software. Once installed, the malware corrupts the user’s Discord JavaScript files, subsequently taking over the site.

You can check whether you’ve been hacked through the following two steps:

First, use Notepad to open Discord's index.js file in %AppData%\Discord\[version]\modules\discord_desktop_core. Second, check for the following code: “module.exports = require('./core.asar')”. If you’re unfortunate enough to have that, you’ve been hacked.

What now? PCMalware.com guides you through two options to delete AnarchyGrabber. It urges you to act the moment you suspect your system has been infected.

Josh Ross, IT enthusiast, told IT Pro: “If you do not care about your files, programs or any other work that you may have on your PC, I would recommend doing a full clean reinstall of your Windows, and you are good to go.

"A more complicated way would be a thorough cleanup of your PC. I recommend installing some form of Adblock on your PC just to get rid of ad-spread malware and trojans.”

Avoid AnarchyGrabber by ignoring emails that come with subject lines such as “Urgent”, “Act Now” or “Best Price.” Also disregard attachments from spurious or unknown email senders.

Featured Resources

Next-generation time series: Forecasting for the real world, not the ideal world

Solve time series problems with AI

Free download

The future of productivity

Driving your business forward with Microsoft Office 365

Free download

How to plan for endpoint security against ever-evolving cyber threats

Safeguard your devices, data, and reputation

Free download

A quantitative comparison of UPS monitoring and servicing approaches across edge environments

Effective UPS fleet management

Free download

Recommended

Microsoft touts new cyber security help for nonprofits
cyber security

Microsoft touts new cyber security help for nonprofits

22 Oct 2021
A quarter of all malicious JavaScript is obfuscated
hacking

A quarter of all malicious JavaScript is obfuscated

20 Oct 2021
Organizations warned of ransomware risk from smaller operators
ransomware

Organizations warned of ransomware risk from smaller operators

19 Oct 2021
Iranian hacking group continues to target US citizens
hacking

Iranian hacking group continues to target US citizens

18 Oct 2021

Most Popular

Best Linux distros 2021
operating systems

Best Linux distros 2021

11 Oct 2021
Apple MacBook Pro 15in vs Dell XPS 15: Clash of the titans
Laptops

Apple MacBook Pro 15in vs Dell XPS 15: Clash of the titans

11 Oct 2021
PayPal dismisses $45 billion Pinterest takeover as "market rumour"
Acquisition

PayPal dismisses $45 billion Pinterest takeover as "market rumour"

25 Oct 2021