Risepro

Malware updated 3 months ago (2024-07-24T12:18:24.714Z)
Download STIX
Preview STIX
RisePro is a type of malware, specifically an info-stealer, designed to infiltrate and damage computer systems. It operates by exploiting vulnerabilities in a device, often through suspicious downloads, emails, or websites, typically without the user's knowledge. Once inside, RisePro can disrupt operations, steal personal information, or even hold data hostage for ransom. The malware has been associated with various other malicious software families, including Atlantida Stealer, Rhadamanthys, Lumma Stealer, and RedLine. The "gitgub" malware campaign has been actively targeting Github users with the RisePro info-stealer. The main webpages of these projects offer downloads that, once installed, infect devices with various types of "infostealer" malware such as Atomic macOS Stealer (AMOS), Stealc, Rhadamanthys, or RisePro, depending on the operating system. This campaign has resulted in a significant number of Github users falling victim to this harmful software, leading to substantial cybersecurity concerns. One notable aspect of the RisePro malware is its use of phishing templates, which are designed to trick users into revealing sensitive information. A template titled "RisePro Stealer + HVNC Crack: The Ultimate Cybersecurity Threat" purportedly offers a cracked version of the known infostealer RisePro. This strategy further enhances the malware's ability to infiltrate systems, making it a formidable cybersecurity threat.
Description last updated: 2024-07-24T12:16:54.138Z
What's your take? (Question 1 of 5)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at. Create a free account to see the source evidence for each alias, and help fix any errors.
Alias DescriptionVotes
Stealc is a possible alias for Risepro. StealC is a pernicious malware that specifically targets browser extensions and authenticators by password managers. It came to the forefront following a significant attack on the Solana blockchain in 2023, which resulted in a $7 million heist due to a related malware called Luca Stealer. The StealC
4
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Malware
Exploit
Infostealer
Loader
Github
Payload
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Associated Malware
To see the evidence that has resulted in these malware associations, create a free account
Alias DescriptionAssociation TypeVotes
The Redline Malware is associated with Risepro. RedLine is a type of malware, a malicious software designed to exploit and damage computer systems. It can infiltrate systems through suspicious downloads, emails, or websites, often unbeknownst to the user. Once inside, RedLine can steal personal information, disrupt operations, or deliver further Unspecified
4
The Privateloader Malware is associated with Risepro. PrivateLoader is a notable malware that has been active since at least December 19, 2022. It acts as the first step in many malware schemes, often initiating an infection chain that leads to other malicious software. The malware can infiltrate systems through suspicious downloads, emails, or websiteUnspecified
3
The Vidar Malware is associated with Risepro. Vidar is a Windows-based malware, written in C++, that primarily functions as an infostealer. It is based on the Arkei stealer and typically targets various types of data, using the ACR Stealer as an exfiltration module. However, in a unique twist, Vidar downloads the ACR stealer instead of stealingUnspecified
3
Associated Threat Actors
To see the evidence that has resulted in these threatActor associations, create a free account
Alias DescriptionAssociation TypeVotes
The White Snake Threat Actor is associated with Risepro. White Snake is a sophisticated threat actor known for its malware, the White Snake Stealer, which poses a significant cyber threat due to its ongoing development and distribution through a Malware-as-a-Service (MaaS) model. The malware is designed to infiltrate a wide array of applications, includinUnspecified
2
Source Document References
Information about the Risepro Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
Securityaffairs
2 months ago
Securityaffairs
3 months ago
Checkpoint
3 months ago
Securityaffairs
3 months ago
Securityaffairs
3 months ago
Securityaffairs
3 months ago
Recorded Future
4 months ago
Securityaffairs
4 months ago
Securityaffairs
4 months ago
Securityaffairs
4 months ago
Securityaffairs
4 months ago
Securityaffairs
5 months ago
DARKReading
5 months ago
Securityaffairs
6 months ago
CERT-EU
a year ago
CERT-EU
a year ago
Securityaffairs
6 months ago
CERT-EU
a year ago
DARKReading
6 months ago
Securityaffairs
6 months ago