risepro | 8832a0cb2173894f538ee8cd8de6943c84d1e591a92b4cf2233d66514b0ca6c0 | Triage

Sharing

General

Target

8832a0cb2173894f538ee8cd8de6943c84d1e591a92b4cf2233d66514b0ca6c0
Size

1.3MB
Sample

240618-xxxenaygln
MD5

c1cb50e0a9b7d8c78fc68e28de032402
SHA1

73880421712db89a6b68e4ecf69582c4be558e5d
SHA256

8832a0cb2173894f538ee8cd8de6943c84d1e591a92b4cf2233d66514b0ca6c0
SHA512

4e48c483b3bc9bc7cb63ac9c29ca3a964cbf6e6a93c246ce73897cc1ff23341c8b109b3979717793f661a77bb6415a56f9f276998ecbb0f966939ef3b6913deb
SSDEEP

24576:mjCKpOoILo/BmNpHV3COw8LwQYN2K3yWds0JkKyVagDoIl9UAmPn8MBP1XQT+:aVpjL/U9COJLl9adsLUgDpjLKxBCT+

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

147.45.47.126:58709

Targets

- Target
  
  8832a0cb2173894f538ee8cd8de6943c84d1e591a92b4cf2233d66514b0ca6c0
- Size
  
  1.3MB
- MD5
  
  c1cb50e0a9b7d8c78fc68e28de032402
- SHA1
  
  73880421712db89a6b68e4ecf69582c4be558e5d
- SHA256
  
  8832a0cb2173894f538ee8cd8de6943c84d1e591a92b4cf2233d66514b0ca6c0
- SHA512
  
  4e48c483b3bc9bc7cb63ac9c29ca3a964cbf6e6a93c246ce73897cc1ff23341c8b109b3979717793f661a77bb6415a56f9f276998ecbb0f966939ef3b6913deb
- SSDEEP
  
  24576:mjCKpOoILo/BmNpHV3COw8LwQYN2K3yWds0JkKyVagDoIl9UAmPn8MBP1XQT+:aVpjL/U9COJLl9adsLUgDpjLKxBCT+
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2