risepro | b11745b9ee33c85330da1ac6ea027a74b54c1ebcbecbe103b4f72586879da996 | Triage

Sharing

General

Target

b11745b9ee33c85330da1ac6ea027a74b54c1ebcbecbe103b4f72586879da996
Size

2.9MB
Sample

240306-fl3nvscg53
MD5

bc40597df7fa42c4da244eb2c81f827f
SHA1

8fbbc67444d9153c4707e721320aa778ce01f585
SHA256

b11745b9ee33c85330da1ac6ea027a74b54c1ebcbecbe103b4f72586879da996
SHA512

869bef673da9e92923270d910c0da0b74d5223f1cc06fe2918dcbe8e8547cef9a61bb89ef3548ab4acc73ddd3a75b1f8c4e3911f394021748de26bf11a4ce14b
SSDEEP

49152:ynLwavY3QnF8DRINhU2JkXX5TI6yA3X6B78SF7A1PocHT2vy4sIQU7fejZEdi657:+savsQnF4iaZT1L3Xm8SeVJHyzsVUKF3

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

193.233.132.62

Targets

- Target
  
  b11745b9ee33c85330da1ac6ea027a74b54c1ebcbecbe103b4f72586879da996
- Size
  
  2.9MB
- MD5
  
  bc40597df7fa42c4da244eb2c81f827f
- SHA1
  
  8fbbc67444d9153c4707e721320aa778ce01f585
- SHA256
  
  b11745b9ee33c85330da1ac6ea027a74b54c1ebcbecbe103b4f72586879da996
- SHA512
  
  869bef673da9e92923270d910c0da0b74d5223f1cc06fe2918dcbe8e8547cef9a61bb89ef3548ab4acc73ddd3a75b1f8c4e3911f394021748de26bf11a4ce14b
- SSDEEP
  
  49152:ynLwavY3QnF8DRINhU2JkXX5TI6yA3X6B78SF7A1PocHT2vy4sIQU7fejZEdi657:+savsQnF4iaZT1L3Xm8SeVJHyzsVUKF3
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2