yunsip | 4e854ab408c81e9aad122536a951c0a1eb6223975aa68985dd8a9096087b1ca3 | Triage

Submit
Reports

Overview

overview

Static

static

3

4e854ab408...a3.dll

windows7-x64

4e854ab408...a3.dll

windows10-2004-x64

Sharing

General

Target

4e854ab408c81e9aad122536a951c0a1eb6223975aa68985dd8a9096087b1ca3
Size

719KB
Sample

240610-1svbaasbna
MD5

66ecca86dd9006dc201c0c6dc3a92a5e
SHA1

ab1da37abe12f1225f6b8aa3cb6c16676cb7f1e1
SHA256

4e854ab408c81e9aad122536a951c0a1eb6223975aa68985dd8a9096087b1ca3
SHA512

a2b0ce116e47b1135141ba6ff45d8fdd968452593c9d7d3cbfec161c45294b39d4cc5243062274aa055d7206df7ae382508a5838a1b4fa62a812070ed6ac6d31
SSDEEP

6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYS:o6RI1Fo/wT3cJYYYYYYYYYYYYS

Score

10^/10

yunsip banker trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4e854ab408c81e9aad122536a951c0a1eb6223975aa68985dd8a9096087b1ca3.dll

Resource

win7-20240221-en

yunsip banker trojan

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

4e854ab408c81e9aad122536a951c0a1eb6223975aa68985dd8a9096087b1ca3.dll

Resource

win10v2004-20240426-en

yunsip banker trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  4e854ab408c81e9aad122536a951c0a1eb6223975aa68985dd8a9096087b1ca3
- Size
  
  719KB
- MD5
  
  66ecca86dd9006dc201c0c6dc3a92a5e
- SHA1
  
  ab1da37abe12f1225f6b8aa3cb6c16676cb7f1e1
- SHA256
  
  4e854ab408c81e9aad122536a951c0a1eb6223975aa68985dd8a9096087b1ca3
- SHA512
  
  a2b0ce116e47b1135141ba6ff45d8fdd968452593c9d7d3cbfec161c45294b39d4cc5243062274aa055d7206df7ae382508a5838a1b4fa62a812070ed6ac6d31
- SSDEEP
  
  6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYS:o6RI1Fo/wT3cJYYYYYYYYYYYYS
Score

10^/10

yunsip banker trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

yunsipbankertrojan

behavioral2

yunsipbankertrojan

© 2018-2024

Terms | Privacy