risepro | a1d255f19f618012c2a600db54fb25521c36bf70ec584b3dde22dbc061e6fc99 | Triage

Sharing

General

Target

a1d255f19f618012c2a600db54fb25521c36bf70ec584b3dde22dbc061e6fc99.exe
Size

1.3MB
Sample

240617-r4yneavaqf
MD5

4040b56a7664b71abf5df4440be1662e
SHA1

3280eb87542b9ab6237f974f1e2a4f60b1352b7a
SHA256

a1d255f19f618012c2a600db54fb25521c36bf70ec584b3dde22dbc061e6fc99
SHA512

c87549aae35e0b689c757d7e0610cb700e4ee6a952d9175e11d3fbfeeba4b176f89114df09f842cdcda8a4c61755b84312f50dd7b02a917fb0f85a1301c4e542
SSDEEP

24576:38ZgfFUjghgUF4caDmKLQElvIdfFusiLKgNtwQqRHW/nS1Lek4FF4B:pUk+7DxlgpFKZtlqR2/S1akz

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

147.45.47.126:58709

Targets

- Target
  
  a1d255f19f618012c2a600db54fb25521c36bf70ec584b3dde22dbc061e6fc99.exe
- Size
  
  1.3MB
- MD5
  
  4040b56a7664b71abf5df4440be1662e
- SHA1
  
  3280eb87542b9ab6237f974f1e2a4f60b1352b7a
- SHA256
  
  a1d255f19f618012c2a600db54fb25521c36bf70ec584b3dde22dbc061e6fc99
- SHA512
  
  c87549aae35e0b689c757d7e0610cb700e4ee6a952d9175e11d3fbfeeba4b176f89114df09f842cdcda8a4c61755b84312f50dd7b02a917fb0f85a1301c4e542
- SSDEEP
  
  24576:38ZgfFUjghgUF4caDmKLQElvIdfFusiLKgNtwQqRHW/nS1Lek4FF4B:pUk+7DxlgpFKZtlqR2/S1akz
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2