yunsip | 74b3303eeaf9e9902c3ed7924bcf9e053a6f1aa0214a82e9f6dfde1f3d6c0ead | Triage

Sharing

General

Target

6e790562de76fe3b119dcf8b1bb64a00N.exe
Size

1.0MB
Sample

240725-et1zkayajk
MD5

6e790562de76fe3b119dcf8b1bb64a00
SHA1

cae3c074ef9ea5304d520ce3fb364e79f5aa1c24
SHA256

74b3303eeaf9e9902c3ed7924bcf9e053a6f1aa0214a82e9f6dfde1f3d6c0ead
SHA512

dd7454465381c29ee731da166e4288839866613f0c752d7ebfdf04d246b92725adf9e79b562b01d9ef29deea929c2ce69887aae946ea3d1048b4eb88f4da82e5
SSDEEP

6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYA:o6RI1Fo/wT3cJYYYYYYYYYYYYA

Score

10^/10

yunsip banker discovery trojan

Malware Config

Targets

- Target
  
  6e790562de76fe3b119dcf8b1bb64a00N.exe
- Size
  
  1.0MB
- MD5
  
  6e790562de76fe3b119dcf8b1bb64a00
- SHA1
  
  cae3c074ef9ea5304d520ce3fb364e79f5aa1c24
- SHA256
  
  74b3303eeaf9e9902c3ed7924bcf9e053a6f1aa0214a82e9f6dfde1f3d6c0ead
- SHA512
  
  dd7454465381c29ee731da166e4288839866613f0c752d7ebfdf04d246b92725adf9e79b562b01d9ef29deea929c2ce69887aae946ea3d1048b4eb88f4da82e5
- SSDEEP
  
  6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYA:o6RI1Fo/wT3cJYYYYYYYYYYYYA
Score

10^/10

yunsip banker discovery trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

yunsipbankerdiscoverytrojan

behavioral2

yunsipbankerdiscoverytrojan