menu_book Malware Family

RisePro Stealer

Also known as: RisePro

RisePro is an infostealer that shares similarities with the Vidar family and is distributed through pay-per-install loader services. It collects browser credentials, cookies, cryptocurrency wallets, and card data, and has been spread via cracked-software bundles.

What is RisePro?

RisePro is an infostealer that exhibits code and behavioural overlap with Vidar. It is sold on underground channels and has been distributed heavily through pay-per-install (PPI) services that bundle malware with cracked software.

Distribution

RisePro has been observed delivered by loader and PPI networks, where operators pay for installs on already-compromised machines, allowing rapid mass distribution.

How VantaPrism Tracks RisePro Stealer

VantaPrism tracks RisePro alongside related Vidar-lineage families, parsing its logs so analysts can attribute exposures even when families share code and infrastructure.

Check Your Exposure arrow_forward

Frequently Asked Questions

Is RisePro related to Vidar?

expand_more

RisePro shares code and behavioural similarities with Vidar, though it is tracked as its own family.

Related Terms

Vidar Stealer arrow_outward

Vidar is a long-running infostealer, derived from the older Arkei stealer, that collects browser credentials, cookies…

Infostealer Malware arrow_outward

Infostealer malware is a category of malicious software designed to silently harvest sensitive data — passwords, sess…

Stealer Logs arrow_outward

A stealer log is the package of data exfiltrated from a single device by infostealer malware. It typically contains s…

Loader Malware arrow_outward

Loader malware (a loader or dropper) is software whose job is to install other malware on a compromised device. Loade…

← All Glossary Terms Last reviewed: June 2026