IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

AnarchyGrabber hack steals Discord tokens, IDs and passwords

New trojan software corrupts Discord’s JavaScript files to get your private data

There’s a new trojan version of AnarchyGrabber that steals chatting app Discord passwords and tokens and disables the victim’s two-factor authentication. The malware also compromises accounts on other sites.

Trojan viruses are malicious malware that, despite their innocent appearance, slow your computer, steal user accounts and can cause other significant computer issues. This third version of AnarchyGrabber stalls your computer within minutes and evades detection by modifying client files.

Bleeping Computer reported, “earlier this week, a threat actor released a modified AnarchyGrabber trojan that contains new and powerful features.”

Malicious actors download AnarchyGrabber for free from hacker forums and YouTube videos that explain how to steal Discord user tokens. They distribute the malware on Discord, presenting it as a hacking tool, game cheat or copyrighted software. Once installed, the malware corrupts the user’s Discord JavaScript files, subsequently taking over the site.

You can check whether you’ve been hacked through the following two steps:

First, use Notepad to open Discord's index.js file in %AppData%\Discord\[version]\modules\discord_desktop_core. Second, check for the following code: “module.exports = require('./core.asar')”. If you’re unfortunate enough to have that, you’ve been hacked.

What now? PCMalware.com guides you through two options to delete AnarchyGrabber. It urges you to act the moment you suspect your system has been infected.

Josh Ross, IT enthusiast, told IT Pro: “If you do not care about your files, programs or any other work that you may have on your PC, I would recommend doing a full clean reinstall of your Windows, and you are good to go.

"A more complicated way would be a thorough cleanup of your PC. I recommend installing some form of Adblock on your PC just to get rid of ad-spread malware and trojans.”

Avoid AnarchyGrabber by ignoring emails that come with subject lines such as “Urgent”, “Act Now” or “Best Price.” Also disregard attachments from spurious or unknown email senders.

Featured Resources

The state of Salesforce: Future of business

Three articles that look forward into the changing state of Salesforce and the future of business

Free Download

The mighty struggle to migrate SAP to the cloud may be over

A simplified and unified approach to delivering Enterprise Transformation in the cloud

Free Download

The business value of the transformative mainframe

Modernising on the mainframe

Free Download

The Total Economic Impact™ Of IBM FlashSystem

Cost savings and business benefits enabled by FlashSystem

Free Download

Recommended

Twilio account breach result of sophisticated social engineering campaign
Security

Twilio account breach result of sophisticated social engineering campaign

9 Aug 2022
Over 200,000 DrayTek routers vulnerable to total device takeover
Security

Over 200,000 DrayTek routers vulnerable to total device takeover

3 Aug 2022
Data on 69 million Neopets users stolen and listed for sale on hacker forum
Security

Data on 69 million Neopets users stolen and listed for sale on hacker forum

21 Jul 2022
HackerOne employee fired for using position to steal bug bounties
Security

HackerOne employee fired for using position to steal bug bounties

4 Jul 2022

Most Popular

Why convenience is the biggest threat to your security
Sponsored

Why convenience is the biggest threat to your security

8 Aug 2022
How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

29 Jul 2022
Microsoft successfully tests emission-free hydrogen fuel cell system for data centres
data centres

Microsoft successfully tests emission-free hydrogen fuel cell system for data centres

29 Jul 2022