risepro | 953845517c6b115e04e621590e44744270ad772dfb16ded47eda198938a54e1b | Triage

Sharing

General

Target

953845517c6b115e04e621590e44744270ad772dfb16ded47eda198938a54e1b
Size

23.9MB
Sample

240523-fec5maec3y
MD5

24e4d1c9cc8a3e4b59d3cca3adf2693c
SHA1

f18cdcf6a5edb9af64c66a88ebcc9464644fc791
SHA256

953845517c6b115e04e621590e44744270ad772dfb16ded47eda198938a54e1b
SHA512

953abe36e36350daa7671156432445ff779ff18f1059a3172dec1251c304ed82337d58a51ca65d123e5270729fb2ffb4074cc8d005a1720e0fd4d0fcf26ccadb
SSDEEP

393216:eSM0Dml0iSiRoAnmhIlHQtkCd+k6WxozOVJb7kCsecPP4m1EtFEUZ1iPFQh:BC0iSiRoAnmhIlTk648E97PduetFtL7

Score

10^/10

risepro evasion trojan

Malware Config

Extracted

Family

risepro

C2

http://192.168.23.58:9000

Targets

- Target
  
  953845517c6b115e04e621590e44744270ad772dfb16ded47eda198938a54e1b
- Size
  
  23.9MB
- MD5
  
  24e4d1c9cc8a3e4b59d3cca3adf2693c
- SHA1
  
  f18cdcf6a5edb9af64c66a88ebcc9464644fc791
- SHA256
  
  953845517c6b115e04e621590e44744270ad772dfb16ded47eda198938a54e1b
- SHA512
  
  953abe36e36350daa7671156432445ff779ff18f1059a3172dec1251c304ed82337d58a51ca65d123e5270729fb2ffb4074cc8d005a1720e0fd4d0fcf26ccadb
- SSDEEP
  
  393216:eSM0Dml0iSiRoAnmhIlHQtkCd+k6WxozOVJb7kCsecPP4m1EtFEUZ1iPFQh:BC0iSiRoAnmhIlTk648E97PduetFtL7
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2