risepro | 352fa07a1269bacd2422cd60c8ccc24e95cdfcdd04b1fd1c37e6e8c71f9203e3 | Triage

Sharing

General

Target

352fa07a1269bacd2422cd60c8ccc24e95cdfcdd04b1fd1c37e6e8c71f9203e3
Size

1.3MB
Sample

240619-qb13dsvhmk
MD5

f22fb8771e211aeb78245a57f2a1d837
SHA1

357e680581d4cd1f4f49ae015649455843d85033
SHA256

352fa07a1269bacd2422cd60c8ccc24e95cdfcdd04b1fd1c37e6e8c71f9203e3
SHA512

3519d0d25440ab73965c0dd5d0e57b154894d2d198d504407502603f77f56ae1b551e612fe1ed6f623a94cfbd8c7626c66cb201dcd0db080df23f7ef9f113097
SSDEEP

24576:/Ocpd0rpKaiHJiyDJWwgwQQz+8sCHsnQ3v0lXA:WcD2oaspJWwglQcusQcQ

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

147.45.47.126:58709

Targets

- Target
  
  352fa07a1269bacd2422cd60c8ccc24e95cdfcdd04b1fd1c37e6e8c71f9203e3
- Size
  
  1.3MB
- MD5
  
  f22fb8771e211aeb78245a57f2a1d837
- SHA1
  
  357e680581d4cd1f4f49ae015649455843d85033
- SHA256
  
  352fa07a1269bacd2422cd60c8ccc24e95cdfcdd04b1fd1c37e6e8c71f9203e3
- SHA512
  
  3519d0d25440ab73965c0dd5d0e57b154894d2d198d504407502603f77f56ae1b551e612fe1ed6f623a94cfbd8c7626c66cb201dcd0db080df23f7ef9f113097
- SSDEEP
  
  24576:/Ocpd0rpKaiHJiyDJWwgwQQz+8sCHsnQ3v0lXA:WcD2oaspJWwglQcusQcQ
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2