yunsip | a2c15bceb7047663096edd77edd69b39397526389e2905f12d9765fed8f71b39 | Triage

Sharing

General

Target

a2c15bceb7047663096edd77edd69b39397526389e2905f12d9765fed8f71b39.dll
Size

1.0MB
Sample

240726-fk849a1bqb
MD5

d8b483da170c4af0e00cdd8ab2d4c9fa
SHA1

f4779848b4aaf1610d64d503128558872e111298
SHA256

a2c15bceb7047663096edd77edd69b39397526389e2905f12d9765fed8f71b39
SHA512

e3c5927e060962ba044502bb1d894ef051547b3e2c738e519b2dd94e6f903eaa8b19f95395e80b29748e996b51cfbb5947aa287364f4c93cfd40ebbb69ec578a
SSDEEP

6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYY:o6RI1Fo/wT3cJYYYYYYYYYYYY

Score

10^/10

yunsip banker discovery trojan

Malware Config

Targets

- Target
  
  a2c15bceb7047663096edd77edd69b39397526389e2905f12d9765fed8f71b39.dll
- Size
  
  1.0MB
- MD5
  
  d8b483da170c4af0e00cdd8ab2d4c9fa
- SHA1
  
  f4779848b4aaf1610d64d503128558872e111298
- SHA256
  
  a2c15bceb7047663096edd77edd69b39397526389e2905f12d9765fed8f71b39
- SHA512
  
  e3c5927e060962ba044502bb1d894ef051547b3e2c738e519b2dd94e6f903eaa8b19f95395e80b29748e996b51cfbb5947aa287364f4c93cfd40ebbb69ec578a
- SSDEEP
  
  6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYY:o6RI1Fo/wT3cJYYYYYYYYYYYY
Score

10^/10

yunsip banker discovery trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

yunsipbankerdiscoverytrojan

behavioral2

yunsipbankerdiscoverytrojan