Overview

overview

10

Static

static

1

c0fee8db63...5a.exe

windows7-x64

10

c0fee8db63...5a.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    132s
  • max time network
    128s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24-05-2024 08:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c0fee8db6325c8c1b3f8ccd13574c65a.exe

  • Size

    4.6MB

  • MD5

    c0fee8db6325c8c1b3f8ccd13574c65a

  • SHA1

    2ddc159f8a06218c7622c7cd107598be1fbd3c99

  • SHA256

    d177dc7ba9f3e8511b08293b8cf92af0ba4dedd029c9f8365fcf05afa8375344

  • SHA512

    76ed65dc22149c9263c83d73d16a08e99b9137e619fe26af852acc2b4af127c43bd5c6dd2bd16ba117c3432e1422f54157fe6ccb6e9d997e02c776bd52a26bf9

  • SSDEEP

    98304:+yjDqWHejZxTbsZFmVRVMGGLwMjzfq/+gIopszmuJDRXts3fYw:+uz+jZuyWTzjzp1opszZL9s3fF

Score
10/10
riseprostealer

Malware Config

Signatures

  • RisePro

    RisePro stealer is an infostealer distributed by PrivateLoader.

    stealerrisepro

Processes

  • C:\Users\Admin\AppData\Local\Temp\c0fee8db6325c8c1b3f8ccd13574c65a.exe
    "C:\Users\Admin\AppData\Local\Temp\c0fee8db6325c8c1b3f8ccd13574c65a.exe"
    1⤵
      PID:4552
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=3976,i,1999448010053300448,1112699187621658374,262144 --variations-seed-version --mojo-platform-channel-handle=4000 /prefetch:8
      1⤵
        PID:4604

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/4552-0-0x00000000002D0000-0x0000000000AA3000-memory.dmp
        Filesize

        7.8MB

        Download