General

  • Target

    2912-4-0x0000000000C30000-0x0000000001162000-memory.dmp

  • Size

    5.2MB

  • MD5

    8a59aac4f374f897f17b66c48ff07bfb

  • SHA1

    d8dd3bc13bfcef9e54277ac2a18cc92469117917

  • SHA256

    2a56ff38b6c600e8ac8702287ff46783a12f23b0fe416f504e029326588c8c07

  • SHA512

    26550ae91ceecbc0c9f0e5e0ced8d8a9cdeb1795e9350fdc82aa74b65c07c9b47cf12ff8c0de3c73ec8f4947d14dc2d0a8691bf6dc5b93f41dbd43fb445209f5

  • SSDEEP

    98304:TwOrtXN3ev88bGwQLJOqmVB0vCTIUiGCEd:kYXNuv1bfQLJOhb0tfEd

Score
10/10

Malware Config

Extracted

Family

risepro

C2

147.45.47.126:58709

Signatures

  • Risepro family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2912-4-0x0000000000C30000-0x0000000001162000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections