Domains used: High-Speed, Secure & Anonymous VPN Service | ExpressVPN (expresvpn.site)
A WhoIs lookup reveals the domain was registered in United States via Beget LLC on August 28, 2021 - Whois expresvpn.site
Download link: ExpressVPN.exe
VirusTotal: VirusTotal
The malware installer is hosted on the official discord servers. I reported it to them.
Also contacted the host and Expressvpn. The site for sure looks legit.
I saw this one coming. Thanks for reporting it. Site seems to be blocked by the hosting/registrar already.
The hosting provider of the site has blocked the page.
Is there really no way to report the malware to Discord?
There is and I did report it: https://support.discord.com/hc/en-us/requests/new?ticket_form_id=360000029731
Just choose abuse and then malware.
