risepro | e4a9d4fb8cc5ed202f3b765b53c201bc6eaa87b76a4c78e408599ff00dca94ae | Triage

Sharing

General

Target

e4a9d4fb8cc5ed202f3b765b53c201bc6eaa87b76a4c78e408599ff00dca94ae.exe
Size

2.9MB
Sample

250318-lcczqsyxev
MD5

04dc5bb453bfac86b98f055022f0e281
SHA1

0d392425601842538a432ec8b7e8d8f6f11311d9
SHA256

e4a9d4fb8cc5ed202f3b765b53c201bc6eaa87b76a4c78e408599ff00dca94ae
SHA512

100fe1f8a72d739e6f15edf5df15f2fab42f90cbb618f6e31198806a21094dcda336f7bd1f555a4bc51b82ec423d5cc11edc4206f895233af3dab64461d64ee8
SSDEEP

49152:S2eCG25kJrHj9gpY0FGcZjDWni+jjgJdQtg/eOc1XCHXDkkzpPBOOItoXCWcmGhr:HOj9gpNFGcBDU5jgLVe8v7viWpGhive

Score

10^/10

risepro discovery stealer

Malware Config

Extracted

Family

risepro

C2

54.180.28.87:50500

Targets

- Target
  
  e4a9d4fb8cc5ed202f3b765b53c201bc6eaa87b76a4c78e408599ff00dca94ae.exe
- Size
  
  2.9MB
- MD5
  
  04dc5bb453bfac86b98f055022f0e281
- SHA1
  
  0d392425601842538a432ec8b7e8d8f6f11311d9
- SHA256
  
  e4a9d4fb8cc5ed202f3b765b53c201bc6eaa87b76a4c78e408599ff00dca94ae
- SHA512
  
  100fe1f8a72d739e6f15edf5df15f2fab42f90cbb618f6e31198806a21094dcda336f7bd1f555a4bc51b82ec423d5cc11edc4206f895233af3dab64461d64ee8
- SSDEEP
  
  49152:S2eCG25kJrHj9gpY0FGcZjDWni+jjgJdQtg/eOc1XCHXDkkzpPBOOItoXCWcmGhr:HOj9gpNFGcBDU5jgLVe8v7viWpGhive
Score

10^/10

discovery risepro stealer
- RisePro
  RisePro stealer is an infostealer distributed by PrivateLoader.
  stealer risepro
- Risepro family
  risepro
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

riseprodiscoverystealer