yunsip | 702b7e336de40784336729287d359d61ff40d28373887efa44f5b39d45844190 | Triage

Submit
Reports

Overview

overview

Static

static

3

NEAS.daf44...60.dll

windows7-x64

NEAS.daf44...60.dll

windows10-2004-x64

Sharing

General

Target

NEAS.daf44959f08c96ccae47fd5514265e60.exe
Size

851KB
Sample

231103-macfvsac45
MD5

daf44959f08c96ccae47fd5514265e60
SHA1

37a09d1a1531bcad344e1f4d0f83c3b4128aa2f7
SHA256

702b7e336de40784336729287d359d61ff40d28373887efa44f5b39d45844190
SHA512

dff00905075f4c6596d0bccf289c092d43d7fa9b0f01decf81d9c8f189907ef74145df320fe445077d1eba3127c4ef1060e55e6e793964b46a244578df93b0cc
SSDEEP

6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYO:o6RI1Fo/wT3cJYYYYYYYYYYYYO

Score

10^/10

yunsip banker trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

NEAS.daf44959f08c96ccae47fd5514265e60.dll

Resource

win7-20231020-en

yunsip banker trojan

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

NEAS.daf44959f08c96ccae47fd5514265e60.dll

Resource

win10v2004-20231023-en

yunsip banker trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  NEAS.daf44959f08c96ccae47fd5514265e60.exe
- Size
  
  851KB
- MD5
  
  daf44959f08c96ccae47fd5514265e60
- SHA1
  
  37a09d1a1531bcad344e1f4d0f83c3b4128aa2f7
- SHA256
  
  702b7e336de40784336729287d359d61ff40d28373887efa44f5b39d45844190
- SHA512
  
  dff00905075f4c6596d0bccf289c092d43d7fa9b0f01decf81d9c8f189907ef74145df320fe445077d1eba3127c4ef1060e55e6e793964b46a244578df93b0cc
- SSDEEP
  
  6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYO:o6RI1Fo/wT3cJYYYYYYYYYYYYO
Score

10^/10

yunsip banker trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

yunsipbankertrojan

behavioral2

yunsipbankertrojan

© 2018-2024

Terms | Privacy