risepro | f7b76a7610d22f1769c42da095fe4b8127d8760afc52da63df7bf5b9f5c5ea63 | Triage

Sharing

General

Target

f7b76a7610d22f1769c42da095fe4b8127d8760afc52da63df7bf5b9f5c5ea63
Size

1.3MB
Sample

240618-1qtlza1grl
MD5

fbe93e04bdce80b4757d8aafeaa3f0c9
SHA1

871264b89183cb3d01c74384a0a04797295dfeba
SHA256

f7b76a7610d22f1769c42da095fe4b8127d8760afc52da63df7bf5b9f5c5ea63
SHA512

8648e4a74213ef281706927238ef2fee92c4376e2d613129517cea656c2d6d385096499b7ff8aa7df4811a286df83b1acd1b48db8c5510ed2be84668a4f16121
SSDEEP

24576:5fJB1p/tJYfLBLcLwAb6ZtkZCywQrRHW/nS+ro6Ya80pBe:vtIJQfWLmCylrR2/S+0qB

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

147.45.47.126:58709

Targets

- Target
  
  f7b76a7610d22f1769c42da095fe4b8127d8760afc52da63df7bf5b9f5c5ea63
- Size
  
  1.3MB
- MD5
  
  fbe93e04bdce80b4757d8aafeaa3f0c9
- SHA1
  
  871264b89183cb3d01c74384a0a04797295dfeba
- SHA256
  
  f7b76a7610d22f1769c42da095fe4b8127d8760afc52da63df7bf5b9f5c5ea63
- SHA512
  
  8648e4a74213ef281706927238ef2fee92c4376e2d613129517cea656c2d6d385096499b7ff8aa7df4811a286df83b1acd1b48db8c5510ed2be84668a4f16121
- SSDEEP
  
  24576:5fJB1p/tJYfLBLcLwAb6ZtkZCywQrRHW/nS+ro6Ya80pBe:vtIJQfWLmCylrR2/S+0qB
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2