yunsip | 29ce983e4743b7343979a437e878604b6a6c3570bdb39e1cf71f254621c4eadc | Triage

Submit
Reports

Overview

overview

Static

static

3

5497ef087b...cs.dll

windows7-x64

5497ef087b...cs.dll

windows10-2004-x64

Sharing

General

Target

5497ef087bdbba632a64a64cc6f29480_NeikiAnalytics
Size

701KB
Sample

240511-cg3xaahh24
MD5

5497ef087bdbba632a64a64cc6f29480
SHA1

7df6619956342437a53523e896e53404cfb21458
SHA256

29ce983e4743b7343979a437e878604b6a6c3570bdb39e1cf71f254621c4eadc
SHA512

d3ef4fa2f9c019b2248f7291c17e4d54e618ace8b4cda5ff7ef277e39a9629fc8a61106d822987ebe8aff360db5ed166ce23917be655be79fc8d284ba7fc5e9f
SSDEEP

6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYz:o6RI1Fo/wT3cJYYYYYYYYYYYYz

Score

10^/10

yunsip banker trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5497ef087bdbba632a64a64cc6f29480_NeikiAnalytics.dll

Resource

win7-20240221-en

yunsip banker trojan

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

5497ef087bdbba632a64a64cc6f29480_NeikiAnalytics.dll

Resource

win10v2004-20240508-en

yunsip banker trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  5497ef087bdbba632a64a64cc6f29480_NeikiAnalytics
- Size
  
  701KB
- MD5
  
  5497ef087bdbba632a64a64cc6f29480
- SHA1
  
  7df6619956342437a53523e896e53404cfb21458
- SHA256
  
  29ce983e4743b7343979a437e878604b6a6c3570bdb39e1cf71f254621c4eadc
- SHA512
  
  d3ef4fa2f9c019b2248f7291c17e4d54e618ace8b4cda5ff7ef277e39a9629fc8a61106d822987ebe8aff360db5ed166ce23917be655be79fc8d284ba7fc5e9f
- SSDEEP
  
  6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYz:o6RI1Fo/wT3cJYYYYYYYYYYYYz
Score

10^/10

yunsip banker trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

yunsipbankertrojan

behavioral2

yunsipbankertrojan

© 2018-2024

Terms | Privacy