risepro | aa2a6ee510862228e35dd17e747a5abd60c042a5bdb28d98762ee3f42a879037 | Triage

Sharing

General

Target

aa2a6ee510862228e35dd17e747a5abd60c042a5bdb28d98762ee3f42a879037
Size

1.3MB
Sample

240620-2zw9wswbll
MD5

1ac92772f0358760314cd1a57917aeb2
SHA1

23b59a1ab00ae1003398d501fbca78eb39ad2b5f
SHA256

aa2a6ee510862228e35dd17e747a5abd60c042a5bdb28d98762ee3f42a879037
SHA512

a45293ab4357cf6a903307ad19e28441c909119e12bb1277e1d9961a1cdc1d3fe6ad48efb71813e0d08b7b90aa5515ab0cf2f2772c716920f8584f6ab9a2bba1
SSDEEP

24576:bYUgH+A48OP0owL/T4TtgoX2dTHCdmXwQVz+80LEeymLGNm6:DA8wDkThm9HKmXlVkETmLX6

Score

10^/10

risepro stealer

Malware Config

Extracted

Family

risepro

C2

147.45.47.126:58709

Targets

- Target
  
  aa2a6ee510862228e35dd17e747a5abd60c042a5bdb28d98762ee3f42a879037
- Size
  
  1.3MB
- MD5
  
  1ac92772f0358760314cd1a57917aeb2
- SHA1
  
  23b59a1ab00ae1003398d501fbca78eb39ad2b5f
- SHA256
  
  aa2a6ee510862228e35dd17e747a5abd60c042a5bdb28d98762ee3f42a879037
- SHA512
  
  a45293ab4357cf6a903307ad19e28441c909119e12bb1277e1d9961a1cdc1d3fe6ad48efb71813e0d08b7b90aa5515ab0cf2f2772c716920f8584f6ab9a2bba1
- SSDEEP
  
  24576:bYUgH+A48OP0owL/T4TtgoX2dTHCdmXwQVz+80LEeymLGNm6:DA8wDkThm9HKmXlVkETmLX6
Score

10^/10

risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2