risepro | 699773d2bcf852aa7bc135e626fe5a08a9b284aac090df12dd754c184c8a2063 | Triage

Submit
Reports

Overview

overview

Static

static

3

file.exe

windows7-x64

7

file.exe

windows10-2004-x64

Sharing

General

Target

file.exe
Size

2.3MB
Sample

240128-vf9bsaffgm
MD5

76d4a943f3e5287c78f094237f3562b2
SHA1

33e08d867ef636a3e8f6b5d2d98e55212793e45b
SHA256

699773d2bcf852aa7bc135e626fe5a08a9b284aac090df12dd754c184c8a2063
SHA512

07f3d6c07505ac88efb74e935d0e4348c62897482bedde93ee6f0ac4d487a8952597895aae53cc77f85b9f52bd390265fd9c6a71d132e46c0515e8c166d18dad
SSDEEP

49152:AkQTAktLCMiS7dLdIm6RjwZuHB1eWn0N7I4hNVsJZkwoGCURHz:AakZCMF7JC3RMEWy0NdsP+URHz

Score

10^/10

risepro stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20231129-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20231215-en

risepro stealer

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

risepro

C2

109.107.182.26:50500

Targets

- Target
  
  file.exe
- Size
  
  2.3MB
- MD5
  
  76d4a943f3e5287c78f094237f3562b2
- SHA1
  
  33e08d867ef636a3e8f6b5d2d98e55212793e45b
- SHA256
  
  699773d2bcf852aa7bc135e626fe5a08a9b284aac090df12dd754c184c8a2063
- SHA512
  
  07f3d6c07505ac88efb74e935d0e4348c62897482bedde93ee6f0ac4d487a8952597895aae53cc77f85b9f52bd390265fd9c6a71d132e46c0515e8c166d18dad
- SSDEEP
  
  49152:AkQTAktLCMiS7dLdIm6RjwZuHB1eWn0N7I4hNVsJZkwoGCURHz:AakZCMF7JC3RMEWy0NdsP+URHz
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- .NET Reactor proctector
  Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy