yunsip | 4d9c9c354cad4b1e380ff846477b0378880257f6827d0715c5a7d8416b34f5a3 | Triage

Sharing

General

Target

bb94b74960e3ca2f436df2f0fcdfbee0N.exe
Size

814KB
Sample

240727-nbne7awgpq
MD5

bb94b74960e3ca2f436df2f0fcdfbee0
SHA1

ec7c586549d718080bd0de3acfa692fc11b7d267
SHA256

4d9c9c354cad4b1e380ff846477b0378880257f6827d0715c5a7d8416b34f5a3
SHA512

40b94c39ede3166a06ab6cb9d9eb740cf7cd09c8062fa30c6fc4c8cad5a72eeab8697536a4ae5e88dfb7736485f1354e21961241bb8d458193c00934b97ffad6
SSDEEP

6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYq:o6RI1Fo/wT3cJYYYYYYYYYYYYq

Score

10^/10

yunsip banker discovery trojan

Malware Config

Targets

- Target
  
  bb94b74960e3ca2f436df2f0fcdfbee0N.exe
- Size
  
  814KB
- MD5
  
  bb94b74960e3ca2f436df2f0fcdfbee0
- SHA1
  
  ec7c586549d718080bd0de3acfa692fc11b7d267
- SHA256
  
  4d9c9c354cad4b1e380ff846477b0378880257f6827d0715c5a7d8416b34f5a3
- SHA512
  
  40b94c39ede3166a06ab6cb9d9eb740cf7cd09c8062fa30c6fc4c8cad5a72eeab8697536a4ae5e88dfb7736485f1354e21961241bb8d458193c00934b97ffad6
- SSDEEP
  
  6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYq:o6RI1Fo/wT3cJYYYYYYYYYYYYq
Score

10^/10

yunsip banker discovery trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

yunsipbankerdiscoverytrojan

behavioral2

yunsipbankerdiscoverytrojan