risepro | 201d8b53cf0a1935adea407933c84626013d248ce1a80351f9d070240e1f5e45 | Triage

Sharing

General

Target

201d8b53cf0a1935adea407933c84626013d248ce1a80351f9d070240e1f5e45.exe
Size

900KB
Sample

240219-gr7ensag47
MD5

9a02a2f6c261bfbe00752d6169e2306a
SHA1

1d067004af08a958e28c731727460ff622448994
SHA256

201d8b53cf0a1935adea407933c84626013d248ce1a80351f9d070240e1f5e45
SHA512

2411db0ad7e5e40fa3b67442861fcdf50b6adcf89ecd9f279b7e9b5d237fa02f3cef4f49aef57348a4725b40b73a5b956c4e56622d296c34f8a09cbdb2ba1f04
SSDEEP

12288:iR8AM+QbbPXaogU58eLF7YNbOO8eLn5aZ6TZO7Ke0xBshl4yUVm2STx:/AM+QbaU5+O3eEZ6TGKtxwl4w2S1

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

193.233.132.62

Targets

- Target
  
  201d8b53cf0a1935adea407933c84626013d248ce1a80351f9d070240e1f5e45.exe
- Size
  
  900KB
- MD5
  
  9a02a2f6c261bfbe00752d6169e2306a
- SHA1
  
  1d067004af08a958e28c731727460ff622448994
- SHA256
  
  201d8b53cf0a1935adea407933c84626013d248ce1a80351f9d070240e1f5e45
- SHA512
  
  2411db0ad7e5e40fa3b67442861fcdf50b6adcf89ecd9f279b7e9b5d237fa02f3cef4f49aef57348a4725b40b73a5b956c4e56622d296c34f8a09cbdb2ba1f04
- SSDEEP
  
  12288:iR8AM+QbbPXaogU58eLF7YNbOO8eLn5aZ6TZO7Ke0xBshl4yUVm2STx:/AM+QbaU5+O3eEZ6TGKtxwl4w2S1
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2