Malware Analysis: Discord-Delivered Infostealer (Lapresse)

Executive Summary I investigated a Discord-distributed malware campaign delivering a Python-based infostealer disguised as .zip files. The malware employs Base85 + XOR obfuscation, multiple persistence mechanisms, and a WebSocket-based C2 infrastructure. I performed both static and dynamic analysis to uncover the infection chain, payload behavior, and exfiltration methods. Threat Overview Category Details Malware Type Python-based Infostealer Entry Point Discor