risepro | c2a6e2b5ba1061555c5f4084beb7862b8e8962d6c6bb4905dbba378039300762 | Triage

Sharing

General

Target

c2a6e2b5ba1061555c5f4084beb7862b8e8962d6c6bb4905dbba378039300762.exe
Size

3.0MB
Sample

240523-cfh6gshh64
MD5

43669086549eb631506889e6f7ce837d
SHA1

4ae55e2d4b2c0135023d094cd0326ae94fcfa41f
SHA256

c2a6e2b5ba1061555c5f4084beb7862b8e8962d6c6bb4905dbba378039300762
SHA512

c0f83da8743b7f76cb6523d21f98dc7240780978dc2bb7ddd1aa799795a495be365ffef7fac3413aeceb68060cec868f848d15a6bcc119b3405989990e34808f
SSDEEP

49152:Rork9QwgE6LefX2cPJkvnMQRDPEWfI0JxsiQz9ky9GN5C5J5yS1a0I:RpELe//JLQ6sNxsi8yy9Ui5yD0I

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

147.45.47.126:58709

Targets

- Target
  
  c2a6e2b5ba1061555c5f4084beb7862b8e8962d6c6bb4905dbba378039300762.exe
- Size
  
  3.0MB
- MD5
  
  43669086549eb631506889e6f7ce837d
- SHA1
  
  4ae55e2d4b2c0135023d094cd0326ae94fcfa41f
- SHA256
  
  c2a6e2b5ba1061555c5f4084beb7862b8e8962d6c6bb4905dbba378039300762
- SHA512
  
  c0f83da8743b7f76cb6523d21f98dc7240780978dc2bb7ddd1aa799795a495be365ffef7fac3413aeceb68060cec868f848d15a6bcc119b3405989990e34808f
- SSDEEP
  
  49152:Rork9QwgE6LefX2cPJkvnMQRDPEWfI0JxsiQz9ky9GN5C5J5yS1a0I:RpELe//JLQ6sNxsi8yy9Ui5yD0I
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2