risepro | 19a38fb0ae80e6087243d17969ebdd64993df535d60719e8f8ae4d7b5af92018 | Triage

Sharing

General

Target

19a38fb0ae80e6087243d17969ebdd64993df535d60719e8f8ae4d7b5af92018
Size

1.3MB
Sample

240618-mfmtsatcln
MD5

cee50d1313972e71e99aa08ec07031ae
SHA1

04d53ac8f3d3c4123a3ea274e00bcbb219a698c1
SHA256

19a38fb0ae80e6087243d17969ebdd64993df535d60719e8f8ae4d7b5af92018
SHA512

46fcf97f9ca6a5f229c0fe3481e6f6b0e7f80f92aeb290b460610a0c81ec3fa638ec6ac1103cdd9af97fd11b55f87f58e99f96b586e5ca8c5e6ae9dabe24c15c
SSDEEP

24576:BwtED+lcsbq0ktTdEwGgU4+/ywQRBaWnBCqcZn+BY2:B/+csmLhdU5/ylRBaWnt

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

147.45.47.126:58709

Targets

- Target
  
  19a38fb0ae80e6087243d17969ebdd64993df535d60719e8f8ae4d7b5af92018
- Size
  
  1.3MB
- MD5
  
  cee50d1313972e71e99aa08ec07031ae
- SHA1
  
  04d53ac8f3d3c4123a3ea274e00bcbb219a698c1
- SHA256
  
  19a38fb0ae80e6087243d17969ebdd64993df535d60719e8f8ae4d7b5af92018
- SHA512
  
  46fcf97f9ca6a5f229c0fe3481e6f6b0e7f80f92aeb290b460610a0c81ec3fa638ec6ac1103cdd9af97fd11b55f87f58e99f96b586e5ca8c5e6ae9dabe24c15c
- SSDEEP
  
  24576:BwtED+lcsbq0ktTdEwGgU4+/ywQRBaWnBCqcZn+BY2:B/+csmLhdU5/ylRBaWnt
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2