General

  • Target

    2328-1-0x0000000001360000-0x00000000020B8000-memory.dmp

  • Size

    13.3MB

  • MD5

    aae3dca5d59e68aa91b94fd96dc717b4

  • SHA1

    1c83109237c855714754e3207f28ef7dc4df16e0

  • SHA256

    0dfdb4ef21d7a11d29fc71c18c381d46325203f19aa677b12764e00829173cab

  • SHA512

    c4feafa5145e13e7926bc080100de1be5d45568243446d0bb68db20dbb7d28e71a99f764b3e82486fa1fe95608fa5cc9a6b6dde2abf7b604abdfd8ccf68ef392

  • SSDEEP

    196608:I5f86iI1nkJjdDGV1wItp2tFVYcozkBoeaDegxKHc9ifOB9hSbzuF11B5PYWCpZ2:Ir9nkJjwoakt4qAqlHcWoGAPZ

Score
10/10

Malware Config

Extracted

Family

risepro

C2

193.233.132.67:50500

Signatures

  • Risepro family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2328-1-0x0000000001360000-0x00000000020B8000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections