risepro | ed0162bba102fa5e5f3d12cd93e008b52786bf78b2178bb68f904fafcf01354e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed0162bba102fa5e5f3d12cd93e008b52786bf78b2178bb68f904fafcf01354e
Size

3.0MB
Sample

240508-j7y5cadf95
MD5

e366f54ae083255944cdebd0580c0a57
SHA1

4b7290e023f36025f0ed97310e9466924b73d897
SHA256

ed0162bba102fa5e5f3d12cd93e008b52786bf78b2178bb68f904fafcf01354e
SHA512

1633fcd040a1abe1488de11ce12987c54f1f79a6f1effd66a3a1f4a14eb564cdeabdd6a7f27b09ec2b08f0523c61d15a6730104bee74217b6c2150fca8621a01
SSDEEP

49152:rpaLi25rKEihY/rSwxwESr78BjGIUUyUm6e7zVu0B2h6orL6hM5lZxI+7g5I4paV:Ee4rKNhaewx+78Bjnve7zBB2h62L6UZE

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

147.45.47.126:58709

Targets

- Target
  
  ed0162bba102fa5e5f3d12cd93e008b52786bf78b2178bb68f904fafcf01354e
- Size
  
  3.0MB
- MD5
  
  e366f54ae083255944cdebd0580c0a57
- SHA1
  
  4b7290e023f36025f0ed97310e9466924b73d897
- SHA256
  
  ed0162bba102fa5e5f3d12cd93e008b52786bf78b2178bb68f904fafcf01354e
- SHA512
  
  1633fcd040a1abe1488de11ce12987c54f1f79a6f1effd66a3a1f4a14eb564cdeabdd6a7f27b09ec2b08f0523c61d15a6730104bee74217b6c2150fca8621a01
- SSDEEP
  
  49152:rpaLi25rKEihY/rSwxwESr78BjGIUUyUm6e7zVu0B2h6orL6hM5lZxI+7g5I4paV:Ee4rKNhaewx+78Bjnve7zBB2h62L6UZE
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2