General

  • Target

    a5059580753a72386bede13e4e72f11c2d2327673d5457f1fde6ece25b6da4ec

  • Size

    2.0MB

  • Sample

    240403-mf7tysce74

  • MD5

    d0ce708116ba44a45cdeac9cdde2dbc9

  • SHA1

    b8efa343dceb4a08425346be9d56007aece9dc17

  • SHA256

    a5059580753a72386bede13e4e72f11c2d2327673d5457f1fde6ece25b6da4ec

  • SHA512

    77f6da93715ff5f0309e13da4fe37e073bce147a9d32862fe03df443a7758ddf1d72e743b3e6cd0f8de52f47ba67cbe1a20a2ce28393c0ff4646388d91df5364

  • SSDEEP

    49152:UaR2wtFNbcdc16ubSgxcmVvYqiR7OH5WdMZGVhvIPkEa:UaRjO+Xblxc4hq7OHFAQME

Score
10/10

Malware Config

Targets

    • Target

      a5059580753a72386bede13e4e72f11c2d2327673d5457f1fde6ece25b6da4ec

    • Size

      2.0MB

    • MD5

      d0ce708116ba44a45cdeac9cdde2dbc9

    • SHA1

      b8efa343dceb4a08425346be9d56007aece9dc17

    • SHA256

      a5059580753a72386bede13e4e72f11c2d2327673d5457f1fde6ece25b6da4ec

    • SHA512

      77f6da93715ff5f0309e13da4fe37e073bce147a9d32862fe03df443a7758ddf1d72e743b3e6cd0f8de52f47ba67cbe1a20a2ce28393c0ff4646388d91df5364

    • SSDEEP

      49152:UaR2wtFNbcdc16ubSgxcmVvYqiR7OH5WdMZGVhvIPkEa:UaRjO+Xblxc4hq7OHFAQME

    Score
    10/10
    • RisePro

      RisePro stealer is an infostealer distributed by PrivateLoader.

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

MITRE ATT&CK Enterprise v15

Tasks