risepro | 2dc4d19942c40513808bef745d0fa41f4abb8b3a05b12e86e60fd3232531adde | Triage

Sharing

General

Target

2dc4d19942c40513808bef745d0fa41f4abb8b3a05b12e86e60fd3232531adde
Size

1.3MB
Sample

240618-y7p9rswcke
MD5

7e70f9c8759bd8f82a3d93c9773b433b
SHA1

d24cb0068364b83774e773e344ba7e3407a41016
SHA256

2dc4d19942c40513808bef745d0fa41f4abb8b3a05b12e86e60fd3232531adde
SHA512

8c6b31bc5ddd741db5726f7fad6517c45df0cc089aaecd86e5270823c371dbecd78e4af9a272f75810b12ee6b9fcb0b97f3922278c6893a93bb790b688010083
SSDEEP

24576:F0g0M8kI/sSKn85z6xdpLtuCc1r4tUI+AwQgRHW/nSpr4EsO1kuHqVt:gM8kIESz5zSLaI+AlgR2/S9R52eq

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

147.45.47.126:58709

Targets

- Target
  
  2dc4d19942c40513808bef745d0fa41f4abb8b3a05b12e86e60fd3232531adde
- Size
  
  1.3MB
- MD5
  
  7e70f9c8759bd8f82a3d93c9773b433b
- SHA1
  
  d24cb0068364b83774e773e344ba7e3407a41016
- SHA256
  
  2dc4d19942c40513808bef745d0fa41f4abb8b3a05b12e86e60fd3232531adde
- SHA512
  
  8c6b31bc5ddd741db5726f7fad6517c45df0cc089aaecd86e5270823c371dbecd78e4af9a272f75810b12ee6b9fcb0b97f3922278c6893a93bb790b688010083
- SSDEEP
  
  24576:F0g0M8kI/sSKn85z6xdpLtuCc1r4tUI+AwQgRHW/nSpr4EsO1kuHqVt:gM8kIESz5zSLaI+AlgR2/S9R52eq
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2