risepro | 4416a6a617a48348a83ece8cb3badb07b9ddfe4ed98a4ccbd0bcb581292e1882 | Triage

Sharing

General

Target

875b028a8ca0ee45799d10839adf4220_NeikiAnalytics.exe
Size

1.3MB
Sample

240619-e18mzstepb
MD5

875b028a8ca0ee45799d10839adf4220
SHA1

a08631585660328e977ee9b5d4ec775e6f500b2e
SHA256

4416a6a617a48348a83ece8cb3badb07b9ddfe4ed98a4ccbd0bcb581292e1882
SHA512

555b7c33f0390181ddca1a0190e7ac79778aa543ee9b0c5b3de3aef68e41f52851d541a67d1be390bdf726c6f14be59cec2b5d4ea8f0304b00b4282a626bcbe0
SSDEEP

24576:HQgEfrP/KMT+xTxN9Mj4+SClWNqnYx7IPwOT8UMwQ4ez+8Cospn3ULVHmxh:xEDP/KMSxKj4xkP1T8UMl4eybKLho

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

147.45.47.126:58709

Targets

- Target
  
  875b028a8ca0ee45799d10839adf4220_NeikiAnalytics.exe
- Size
  
  1.3MB
- MD5
  
  875b028a8ca0ee45799d10839adf4220
- SHA1
  
  a08631585660328e977ee9b5d4ec775e6f500b2e
- SHA256
  
  4416a6a617a48348a83ece8cb3badb07b9ddfe4ed98a4ccbd0bcb581292e1882
- SHA512
  
  555b7c33f0390181ddca1a0190e7ac79778aa543ee9b0c5b3de3aef68e41f52851d541a67d1be390bdf726c6f14be59cec2b5d4ea8f0304b00b4282a626bcbe0
- SSDEEP
  
  24576:HQgEfrP/KMT+xTxN9Mj4+SClWNqnYx7IPwOT8UMwQ4ez+8Cospn3ULVHmxh:xEDP/KMSxKj4xkP1T8UMl4eybKLho
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2