yunsip | 6cf7f36abbf2f07b63d98028ba8ae42a968ca76a61ce85974f287801ad957423 | Triage

Submit
Reports

Overview

overview

Static

static

3

30328bf432...0N.dll

windows7-x64

30328bf432...0N.dll

windows10-2004-x64

Sharing

General

Target

30328bf432ee4916fa71be105d8d1c50N.exe
Size

815KB
Sample

240713-cmv4matdmd
MD5

30328bf432ee4916fa71be105d8d1c50
SHA1

2bd77ff33610973965d6ed4ea47d93de7e4b64e1
SHA256

6cf7f36abbf2f07b63d98028ba8ae42a968ca76a61ce85974f287801ad957423
SHA512

cab943ae0d5801954e62c260f8801025a61a12c64b56ee7f09eeb18742597b235441f761cab7550a6aeaa08ae3723d6965042cc5873d954a927108b309e890a8
SSDEEP

6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYV:o6RI1Fo/wT3cJYYYYYYYYYYYYV

Score

10^/10

yunsip banker trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

30328bf432ee4916fa71be105d8d1c50N.dll

Resource

win7-20240708-en

yunsip banker trojan

windows7-x64

2 signatures

120 seconds

Behavioral task

behavioral2

Sample

30328bf432ee4916fa71be105d8d1c50N.dll

Resource

win10v2004-20240709-en

yunsip banker trojan

windows10-2004-x64

2 signatures

120 seconds

Malware Config

Targets

- Target
  
  30328bf432ee4916fa71be105d8d1c50N.exe
- Size
  
  815KB
- MD5
  
  30328bf432ee4916fa71be105d8d1c50
- SHA1
  
  2bd77ff33610973965d6ed4ea47d93de7e4b64e1
- SHA256
  
  6cf7f36abbf2f07b63d98028ba8ae42a968ca76a61ce85974f287801ad957423
- SHA512
  
  cab943ae0d5801954e62c260f8801025a61a12c64b56ee7f09eeb18742597b235441f761cab7550a6aeaa08ae3723d6965042cc5873d954a927108b309e890a8
- SSDEEP
  
  6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYV:o6RI1Fo/wT3cJYYYYYYYYYYYYV
Score

10^/10

yunsip banker trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

yunsipbankertrojan

behavioral2

yunsipbankertrojan

© 2018-2024

Terms | Privacy