General

  • Target

    good.exe

  • Size

    1.6MB

  • MD5

    0065f8f0dc46a3bac13ac37aafa86ada

  • SHA1

    a5b21b99a6881bff2d0b40c8032830a783c22375

  • SHA256

    18d40e9bbb42a4429c2fa30b1ab9f4e602d08579231ff13d8a08e09a28b8d6eb

  • SHA512

    b86c51ccc4ea9b67672dec662458a8adbc40b5812a9590f5ac1c66e1492523358e86521f39cd0cedcfbef0c245334c7da692c89d20e8636a9c33dde30d2fd50c

  • SSDEEP

    49152:qWg8wUmZOzqiavjDUJO/WH89ctcO0ljbbQnIQGotBKqy8TJCHEGU42sn6:ZiUmZOzqiavjDUM/WH89y8bboGO

Score
10/10

Malware Config

Extracted

Family

risepro

C2

193.233.132.51

Signatures

  • Privateloader family
  • Risepro family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • good.exe
    .exe windows:6 windows x86 arch:x86

    a391c991ba6330d6ddb5beaa15ef064c


    Headers

    Imports

    Sections