risepro | 1e612571131d0b3cbfa9b5b60865815e1ec79703920d6834509e6792d068a49a | Triage

Sharing

General

Target

file
Size

2.4MB
Sample

240209-jw93gahd6x
MD5

78381401bb3b7d0af0d2c7896003f7bf
SHA1

b7684564b7ede67faae6773030960a1f3e68737a
SHA256

1e612571131d0b3cbfa9b5b60865815e1ec79703920d6834509e6792d068a49a
SHA512

68e613b966346f09245502a995127b476a0456d772248987718a76dd59109829c6836191b416263de7942528da3c0260a6f489c9fdd5fe2c52eb3597af422ecc
SSDEEP

49152:fPd3Q5c3zVS10KM+q7mXgFLK6lmluHQPNaATXG63btgjaTqM:dQ5cpS1Hqe/NaAK63BgjaTqM

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

193.233.132.67:5000

Targets

- Target
  
  file
- Size
  
  2.4MB
- MD5
  
  78381401bb3b7d0af0d2c7896003f7bf
- SHA1
  
  b7684564b7ede67faae6773030960a1f3e68737a
- SHA256
  
  1e612571131d0b3cbfa9b5b60865815e1ec79703920d6834509e6792d068a49a
- SHA512
  
  68e613b966346f09245502a995127b476a0456d772248987718a76dd59109829c6836191b416263de7942528da3c0260a6f489c9fdd5fe2c52eb3597af422ecc
- SSDEEP
  
  49152:fPd3Q5c3zVS10KM+q7mXgFLK6lmluHQPNaATXG63btgjaTqM:dQ5cpS1Hqe/NaAK63BgjaTqM
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2