yunsip | e9c20db70415f392a395232fb5d50a9fa5e93137d8159aacca804c670fc63c2a | Triage

Submit
Reports

Overview

overview

Static

static

3

NEAS.d75d7...e0.dll

windows7-x64

NEAS.d75d7...e0.dll

windows10-2004-x64

Sharing

General

Target

NEAS.d75d747c8f668fdf76740edb1bf3e3e0.exe
Size

779KB
Sample

231014-xyntxaba63
MD5

d75d747c8f668fdf76740edb1bf3e3e0
SHA1

eab47185835278f775cd306a67215b1aee94d3bf
SHA256

e9c20db70415f392a395232fb5d50a9fa5e93137d8159aacca804c670fc63c2a
SHA512

1cdb18aab83f60a589c5fd3ed107dcaab381a940f95a26fc52be3d3665c79e5fa487df2fcf557ac1ca7606b5917e2555b7483c725019ad9ee2557d2761fa646a
SSDEEP

6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYY+:o6RI1Fo/wT3cJYYYYYYYYYYYY+

Score

10^/10

yunsip banker trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

NEAS.d75d747c8f668fdf76740edb1bf3e3e0.dll

Resource

win7-20230831-en

yunsip banker trojan

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

NEAS.d75d747c8f668fdf76740edb1bf3e3e0.dll

Resource

win10v2004-20230915-en

yunsip banker trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  NEAS.d75d747c8f668fdf76740edb1bf3e3e0.exe
- Size
  
  779KB
- MD5
  
  d75d747c8f668fdf76740edb1bf3e3e0
- SHA1
  
  eab47185835278f775cd306a67215b1aee94d3bf
- SHA256
  
  e9c20db70415f392a395232fb5d50a9fa5e93137d8159aacca804c670fc63c2a
- SHA512
  
  1cdb18aab83f60a589c5fd3ed107dcaab381a940f95a26fc52be3d3665c79e5fa487df2fcf557ac1ca7606b5917e2555b7483c725019ad9ee2557d2761fa646a
- SSDEEP
  
  6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYY+:o6RI1Fo/wT3cJYYYYYYYYYYYY+
Score

10^/10

yunsip banker trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

yunsipbankertrojan

behavioral2

yunsipbankertrojan

© 2018-2024

Terms | Privacy