risepro | 07127f2db2fd0fbf8f2b707f9ab2e50947591acc691e8f4c124aa0e71fcd4b2b | Triage

Sharing

General

Target

07127f2db2fd0fbf8f2b707f9ab2e50947591acc691e8f4c124aa0e71fcd4b2b
Size

1.3MB
Sample

240617-gjbb9s1dnm
MD5

6059aba04635f2a7f90a3db87096c362
SHA1

0aede0ad29795496c0bce444e567f37533b6599e
SHA256

07127f2db2fd0fbf8f2b707f9ab2e50947591acc691e8f4c124aa0e71fcd4b2b
SHA512

671adc4f00a80ff3c05fe5de9442c22b5e2c4925b42729929013b65584fb00b445060e81330976f70959484d525b593570fe366dbcc9c9ba42debdff0354bb94
SSDEEP

24576:mmSoX1LCPju7/vfgR9Dn0C/eWIwQwsiK3cbadInQ3v0lH7mxCt:mmLNEy7/ngAC/erlh3kQcH7mxq

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

147.45.47.126:58709

Targets

- Target
  
  07127f2db2fd0fbf8f2b707f9ab2e50947591acc691e8f4c124aa0e71fcd4b2b
- Size
  
  1.3MB
- MD5
  
  6059aba04635f2a7f90a3db87096c362
- SHA1
  
  0aede0ad29795496c0bce444e567f37533b6599e
- SHA256
  
  07127f2db2fd0fbf8f2b707f9ab2e50947591acc691e8f4c124aa0e71fcd4b2b
- SHA512
  
  671adc4f00a80ff3c05fe5de9442c22b5e2c4925b42729929013b65584fb00b445060e81330976f70959484d525b593570fe366dbcc9c9ba42debdff0354bb94
- SSDEEP
  
  24576:mmSoX1LCPju7/vfgR9Dn0C/eWIwQwsiK3cbadInQ3v0lH7mxCt:mmLNEy7/ngAC/erlh3kQcH7mxq
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2