risepro | b0af222307de7e0f4e10c2c17a3ee127d9946bf6cd19d55fe5b1ef66c9f90dc3

Analysis

max time kernel
139s
max time network
126s
platform
windows10-2004_x64
resource
win10v2004-20240611-en
resource tags

arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
submitted
23/06/2024, 12:23

Target

3152-3-0x0000000000650000-0x0000000000C5C000-memory.exe
Size

6.0MB
MD5

5123adc096631eab4f394228e39b22d1
SHA1

6cf716b8a8ff79fae1734c94d5741beb36cb55de
SHA256

b0af222307de7e0f4e10c2c17a3ee127d9946bf6cd19d55fe5b1ef66c9f90dc3
SHA512

042aa42b0a55556a5b40ae369c5f357575afe708b5a22c5c62b56cb9aca22aea45b7e9ce71af9c4f7b31d26a867506c0cd4dd950488836cbaa7fa02f546e1475
SSDEEP

98304:OydxgPhLe91PhOyQLBu5Zd54pM7/sm3ggSRB2UJA61Ppex6mb:XwPhi9VhJQLBu5JggSRUUrjm

Score

10^/10

risepro stealer

RisePro
RisePro stealer is an infostealer distributed by PrivateLoader.
stealer risepro

C:\Users\Admin\AppData\Local\Temp\3152-3-0x0000000000650000-0x0000000000C5C000-memory.exe
"C:\Users\Admin\AppData\Local\Temp\3152-3-0x0000000000650000-0x0000000000C5C000-memory.exe"
1⤵
PID:4064

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=4116,i,16856304285138459032,14480077487839828721,262144 --variations-seed-version --mojo-platform-channel-handle=4648 /prefetch:8
1⤵
PID:2272

memory/4064-0-0x0000000000650000-0x0000000000C5C000-memory.dmp

Filesize
6.0MB

Download