General
-
Target
9ad4f3bfb05ffbdf9e4a042ab2bfdc6030f437c8d7f2a019a5a7a62415e95052
-
Size
2.0MB
-
Sample
240328-e5nhlsec3v
-
MD5
597ca61f198fcbc3ded4d47102170c0c
-
SHA1
80d494d8a1699a88d33f2388c996781ffc899890
-
SHA256
9ad4f3bfb05ffbdf9e4a042ab2bfdc6030f437c8d7f2a019a5a7a62415e95052
-
SHA512
c7e3ac2071738e6edf87feedf43179deb2fa511caeff382ab57bf41f4d82b98936bb3c2f9d9e4730de52add855a2357575bd21282225bcd6956cef427f72da2f
-
SSDEEP
49152:Ly5er9fzkC23IfaCRAefgDoysOY8bHATMA9XJwccL8RCttFUgqlikpFtY3F:L4QudKzfynm8TQ9rC25wkD
Malware Config
Targets
-
-
Target
9ad4f3bfb05ffbdf9e4a042ab2bfdc6030f437c8d7f2a019a5a7a62415e95052
-
Size
2.0MB
-
MD5
597ca61f198fcbc3ded4d47102170c0c
-
SHA1
80d494d8a1699a88d33f2388c996781ffc899890
-
SHA256
9ad4f3bfb05ffbdf9e4a042ab2bfdc6030f437c8d7f2a019a5a7a62415e95052
-
SHA512
c7e3ac2071738e6edf87feedf43179deb2fa511caeff382ab57bf41f4d82b98936bb3c2f9d9e4730de52add855a2357575bd21282225bcd6956cef427f72da2f
-
SSDEEP
49152:Ly5er9fzkC23IfaCRAefgDoysOY8bHATMA9XJwccL8RCttFUgqlikpFtY3F:L4QudKzfynm8TQ9rC25wkD
Score10/10-
RisePro
RisePro stealer is an infostealer distributed by PrivateLoader.
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-