Overview

overview

10

Static

static

1

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    19fcb719130f0edd27552e014d5b446e85faabe82611311be6dbe28d33463327

  • Size

    2.4MB

  • Sample

    240627-2jckjsvfjh

  • MD5

    033e16b6c1080d304d9abcc618db3bdb

  • SHA1

    eda03c02fb2b8b58001af72390e9591b8a71ec64

  • SHA256

    19fcb719130f0edd27552e014d5b446e85faabe82611311be6dbe28d33463327

  • SHA512

    dbed8360dadb8d1733e2cf8c4412c4a468ade074000906d4ea98680f574ed1027fc326ccb50370166d901b011a140e5ee70fb9901ff53bf1205d85db097f1b79

  • SSDEEP

    49152:DWJ8voaN5Qz+lN4k8nIzHO0TcZxkYNdhN1vTLhczB17wIOmeG0Kwk:DcEoaNpN4/WHRTcZxkO7BcFBImMKV

Score
10/10
riseprostealer

Malware Config

Targets

    • Target

      19fcb719130f0edd27552e014d5b446e85faabe82611311be6dbe28d33463327

    • Size

      2.4MB

    • MD5

      033e16b6c1080d304d9abcc618db3bdb

    • SHA1

      eda03c02fb2b8b58001af72390e9591b8a71ec64

    • SHA256

      19fcb719130f0edd27552e014d5b446e85faabe82611311be6dbe28d33463327

    • SHA512

      dbed8360dadb8d1733e2cf8c4412c4a468ade074000906d4ea98680f574ed1027fc326ccb50370166d901b011a140e5ee70fb9901ff53bf1205d85db097f1b79

    • SSDEEP

      49152:DWJ8voaN5Qz+lN4k8nIzHO0TcZxkYNdhN1vTLhczB17wIOmeG0Kwk:DcEoaNpN4/WHRTcZxkO7BcFBImMKV

    Score
    10/10
    riseprostealer

    • RisePro

      RisePro stealer is an infostealer distributed by PrivateLoader.

      stealerrisepro

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Process Discovery

1
T1057

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks