General

  • Target

    e2e7f9e2b6611c57a4fcea4c56b9c55284a8478c7e49eca0034d40f64f172786

  • Size

    2.0MB

  • Sample

    240403-wevyfagf25

  • MD5

    2cd5416d10d7a3a839698c9d90196638

  • SHA1

    e627a4a210e5843583171be4bdece29da2a961ba

  • SHA256

    e2e7f9e2b6611c57a4fcea4c56b9c55284a8478c7e49eca0034d40f64f172786

  • SHA512

    e74309f2205b0a06b2f929361f764016c3834d6dca810505656f6feb133d16bbb196bb8048325733077abe358eb864cec1c9f10d25d48d6573a86919c5a51aab

  • SSDEEP

    49152:PaR2wtFNbcdc16uWWN/FblIZ20UxMjqWE2ywT9:PaRjO+XvhlIZqwE2ywT

Score
10/10

Malware Config

Targets

    • Target

      e2e7f9e2b6611c57a4fcea4c56b9c55284a8478c7e49eca0034d40f64f172786

    • Size

      2.0MB

    • MD5

      2cd5416d10d7a3a839698c9d90196638

    • SHA1

      e627a4a210e5843583171be4bdece29da2a961ba

    • SHA256

      e2e7f9e2b6611c57a4fcea4c56b9c55284a8478c7e49eca0034d40f64f172786

    • SHA512

      e74309f2205b0a06b2f929361f764016c3834d6dca810505656f6feb133d16bbb196bb8048325733077abe358eb864cec1c9f10d25d48d6573a86919c5a51aab

    • SSDEEP

      49152:PaR2wtFNbcdc16uWWN/FblIZ20UxMjqWE2ywT9:PaRjO+XvhlIZqwE2ywT

    Score
    10/10
    • RisePro

      RisePro stealer is an infostealer distributed by PrivateLoader.

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

MITRE ATT&CK Enterprise v15

Tasks