risepro | a2d29e3ca2790d57f26acd4799862276c4cc5166711ce647bf7ffe85ff96bbdc | Triage

Sharing

General

Target

a2d29e3ca2790d57f26acd4799862276c4cc5166711ce647bf7ffe85ff96bbdc
Size

3.1MB
Sample

240524-ba3r9sfe67
MD5

49ed6a267d0bae6385bd9270600b7e1c
SHA1

784522d9a232e40d5ffe5864539013fb935ff1cc
SHA256

a2d29e3ca2790d57f26acd4799862276c4cc5166711ce647bf7ffe85ff96bbdc
SHA512

e7d80b6d92cccf08fd6b7681441f94195708dcfa74256d67a28eb5e5a22e3888429e4ac141f242ba070a6aa920c9376595cf53b794e0e306ce5f19d1f4d2ca77
SSDEEP

98304:7X0iej2jxD/8jt/RV/Yrjv5odbxZ2edGiCKf8:giej2jxD0jLVgfxod1JciCK

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

147.45.47.126:58709

Targets

- Target
  
  a2d29e3ca2790d57f26acd4799862276c4cc5166711ce647bf7ffe85ff96bbdc
- Size
  
  3.1MB
- MD5
  
  49ed6a267d0bae6385bd9270600b7e1c
- SHA1
  
  784522d9a232e40d5ffe5864539013fb935ff1cc
- SHA256
  
  a2d29e3ca2790d57f26acd4799862276c4cc5166711ce647bf7ffe85ff96bbdc
- SHA512
  
  e7d80b6d92cccf08fd6b7681441f94195708dcfa74256d67a28eb5e5a22e3888429e4ac141f242ba070a6aa920c9376595cf53b794e0e306ce5f19d1f4d2ca77
- SSDEEP
  
  98304:7X0iej2jxD/8jt/RV/Yrjv5odbxZ2edGiCKf8:giej2jxD0jLVgfxod1JciCK
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2