risepro | e43436adb5e9a765e5d30ef2dc7bf1b57037cda02b66f3dcc83520aad5bf82f2 | Triage

Sharing

General

Target

E43436ADB5E9A765E5D30EF2DC7BF1B57037CDA02B66F3DCC83520AAD5BF82F2
Size

1.4MB
Sample

241115-2nj57atfre
MD5

586e8a1303aa1a9d794805cef724d5e3
SHA1

5fc2b1e53cbd130020ebc2404eb6d38f869cf680
SHA256

e43436adb5e9a765e5d30ef2dc7bf1b57037cda02b66f3dcc83520aad5bf82f2
SHA512

dbee6e66c7750032360b24dd6308835d74eea7c3c033e181f6b800a39cf50f0323df4ac9b62777476a6b0f0322a4285124338ce61bf6fc2e3bbe41bdcae84ed0
SSDEEP

24576:ekE0ODVXcJ/lX3DlX7xTbv1qW00NU1JdGU+wq0Dmr+to8lpb:jkJcJB37Tbv1q10NcqHwhPtlp

Score

10^/10

risepro discovery stealer

Malware Config

Extracted

Family

risepro

C2

95.217.5.29

Targets

- Target
  
  E43436ADB5E9A765E5D30EF2DC7BF1B57037CDA02B66F3DCC83520AAD5BF82F2
- Size
  
  1.4MB
- MD5
  
  586e8a1303aa1a9d794805cef724d5e3
- SHA1
  
  5fc2b1e53cbd130020ebc2404eb6d38f869cf680
- SHA256
  
  e43436adb5e9a765e5d30ef2dc7bf1b57037cda02b66f3dcc83520aad5bf82f2
- SHA512
  
  dbee6e66c7750032360b24dd6308835d74eea7c3c033e181f6b800a39cf50f0323df4ac9b62777476a6b0f0322a4285124338ce61bf6fc2e3bbe41bdcae84ed0
- SSDEEP
  
  24576:ekE0ODVXcJ/lX3DlX7xTbv1qW00NU1JdGU+wq0Dmr+to8lpb:jkJcJB37Tbv1q10NcqHwhPtlp
Score

10^/10

discovery risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Risepro family
  risepro
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

riseprodiscoverystealer