yunsip | d83a2cfa69faaa433c8f65a4d0e502386374e10af2c4bb8d481af9d2e0162e15 | Triage

Submit
Reports

Overview

overview

Static

static

3

46d5eb54c3...18.dll

windows7-x64

46d5eb54c3...18.dll

windows10-2004-x64

Sharing

General

Target

46d5eb54c3e32986801aa0cff0fa5c69_JaffaCakes118
Size

438KB
Sample

240714-v7ftjszhqq
MD5

46d5eb54c3e32986801aa0cff0fa5c69
SHA1

8da22a7a6a226b704be96f9fbb7e63aa43fb1881
SHA256

d83a2cfa69faaa433c8f65a4d0e502386374e10af2c4bb8d481af9d2e0162e15
SHA512

446d2986e705235790536e604f75832a6a629aaed995c28b46dc80ce28f16a9a1df16396613f70c2d76c216208295b2124f0b8c05e5771ef0a34e1d23411cff1
SSDEEP

3072:o6pU5Y1DXnbMn7Uzkop61/dAzV2O3XwTBftrm2YedGf3QKZDl:o6C5AXbMn7UI1FoV2gwTBlrIckP7

Score

10^/10

yunsip banker trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

46d5eb54c3e32986801aa0cff0fa5c69_JaffaCakes118.dll

Resource

win7-20240705-en

yunsip banker trojan

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

46d5eb54c3e32986801aa0cff0fa5c69_JaffaCakes118.dll

Resource

win10v2004-20240709-en

yunsip banker trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  46d5eb54c3e32986801aa0cff0fa5c69_JaffaCakes118
- Size
  
  438KB
- MD5
  
  46d5eb54c3e32986801aa0cff0fa5c69
- SHA1
  
  8da22a7a6a226b704be96f9fbb7e63aa43fb1881
- SHA256
  
  d83a2cfa69faaa433c8f65a4d0e502386374e10af2c4bb8d481af9d2e0162e15
- SHA512
  
  446d2986e705235790536e604f75832a6a629aaed995c28b46dc80ce28f16a9a1df16396613f70c2d76c216208295b2124f0b8c05e5771ef0a34e1d23411cff1
- SSDEEP
  
  3072:o6pU5Y1DXnbMn7Uzkop61/dAzV2O3XwTBftrm2YedGf3QKZDl:o6C5AXbMn7UI1FoV2gwTBlrIckP7
Score

10^/10

yunsip banker trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

yunsipbankertrojan

behavioral2

yunsipbankertrojan

© 2018-2024

Terms | Privacy