AnarchyGrabber hack steals Discord tokens, IDs and passwords

New trojan software corrupts Discord’s JavaScript files to get your private data

There’s a new trojan version of AnarchyGrabber that steals chatting app Discord passwords and tokens and disables the victim’s two-factor authentication. The malware also compromises accounts on other sites.

Trojan viruses are malicious malware that, despite their innocent appearance, slow your computer, steal user accounts and can cause other significant computer issues. This third version of AnarchyGrabber stalls your computer within minutes and evades detection by modifying client files.

Bleeping Computer reported, “earlier this week, a threat actor released a modified AnarchyGrabber trojan that contains new and powerful features.”

Malicious actors download AnarchyGrabber for free from hacker forums and YouTube videos that explain how to steal Discord user tokens. They distribute the malware on Discord, presenting it as a hacking tool, game cheat or copyrighted software. Once installed, the malware corrupts the user’s Discord JavaScript files, subsequently taking over the site.

You can check whether you’ve been hacked through the following two steps:

First, use Notepad to open Discord's index.js file in %AppData%\Discord\[version]\modules\discord_desktop_core. Second, check for the following code: “module.exports = require('./core.asar')”. If you’re unfortunate enough to have that, you’ve been hacked.

What now? PCMalware.com guides you through two options to delete AnarchyGrabber. It urges you to act the moment you suspect your system has been infected.

Josh Ross, IT enthusiast, told IT Pro: “If you do not care about your files, programs or any other work that you may have on your PC, I would recommend doing a full clean reinstall of your Windows, and you are good to go.

"A more complicated way would be a thorough cleanup of your PC. I recommend installing some form of Adblock on your PC just to get rid of ad-spread malware and trojans.”

Avoid AnarchyGrabber by ignoring emails that come with subject lines such as “Urgent”, “Act Now” or “Best Price.” Also disregard attachments from spurious or unknown email senders.

Featured Resources

Become a digital service provider

How to transform your business from network core to edge

Download now

Optimal business results with the cloud

Evaluating the best approaches to hybrid cloud adoption

Download now

Virtualisation that enables choices, not compromises

Harness the virtualisation technology that's right for your hybrid infrastructure

Download now

Email security threat report 2020

Four key trends from spear fishing to credentials theft

Download now

Recommended

Hackers using COVID vaccine as a lure to spread malware
hacking

Hackers using COVID vaccine as a lure to spread malware

15 Jan 2021
Cyber criminals bypassing MFA to access cloud service accounts
two-factor authentication (2FA)

Cyber criminals bypassing MFA to access cloud service accounts

14 Jan 2021
Capcom data breach adds another 40,000 estimated victims
data breaches

Capcom data breach adds another 40,000 estimated victims

13 Jan 2021
Website problems slow coronavirus vaccine rollout
hacking

Website problems slow coronavirus vaccine rollout

6 Jan 2021

Most Popular

150,000 arrest records accidentally deleted from police database
data management

150,000 arrest records accidentally deleted from police database

15 Jan 2021
How to recover deleted emails in Gmail
email delivery

How to recover deleted emails in Gmail

6 Jan 2021
What is a 502 bad gateway and how do you fix it?
web hosting

What is a 502 bad gateway and how do you fix it?

12 Jan 2021