risepro | 867ed6c59f1af2e553c0e97f7f7f7096d09ee8663ac512e7a957c6eaba786640 | Triage

Sharing

General

Target

867ed6c59f1af2e553c0e97f7f7f7096d09ee8663ac512e7a957c6eaba786640
Size

1.1MB
Sample

240129-s4hsmaeedq
MD5

b266f2104aa63cc2b02d23a287786a75
SHA1

ce9b8d085236cc263a00ed88248d70abf8e7c0a4
SHA256

867ed6c59f1af2e553c0e97f7f7f7096d09ee8663ac512e7a957c6eaba786640
SHA512

c928909ad41589e985377a542292bf1caadc8e3e8c776a3cf021ca5b1256c5b2499dc31c07c9bcc65300933dc2a970ad39e9afaaf660e80ef2fe4065aa4f9857
SSDEEP

24576:DjOxAQB472fCrFBGeRX9IpoTD9wQiN2K3yWds0JkKyVgop3WcOTenQ3v0lPE:DjCBu2yBXXyiVlvadsL73/OTeQc8

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

193.233.132.62:50500

Targets

- Target
  
  867ed6c59f1af2e553c0e97f7f7f7096d09ee8663ac512e7a957c6eaba786640
- Size
  
  1.1MB
- MD5
  
  b266f2104aa63cc2b02d23a287786a75
- SHA1
  
  ce9b8d085236cc263a00ed88248d70abf8e7c0a4
- SHA256
  
  867ed6c59f1af2e553c0e97f7f7f7096d09ee8663ac512e7a957c6eaba786640
- SHA512
  
  c928909ad41589e985377a542292bf1caadc8e3e8c776a3cf021ca5b1256c5b2499dc31c07c9bcc65300933dc2a970ad39e9afaaf660e80ef2fe4065aa4f9857
- SSDEEP
  
  24576:DjOxAQB472fCrFBGeRX9IpoTD9wQiN2K3yWds0JkKyVgop3WcOTenQ3v0lPE:DjCBu2yBXXyiVlvadsL73/OTeQc8
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2