yunsip | d5f870cd290cf38f7bcb2101f27cf42a119c349b86ba0e1afa699d8c63e83191 | Triage

Sharing

General

Target

9845331b40f0fd15776b539ba21ba2d0N.exe
Size

618KB
Sample

240731-kxnras1gla
MD5

9845331b40f0fd15776b539ba21ba2d0
SHA1

6bfd01f4ef8e77379a6b45d848958d6fbd932869
SHA256

d5f870cd290cf38f7bcb2101f27cf42a119c349b86ba0e1afa699d8c63e83191
SHA512

b95287f341025aef34185b53b3eb3804de255ec490e225b4e664ec846193a97cb7ff0a1023a821ff179f679afedb11cfb0d0d9cdf3e0f775907950ed19d4ba68
SSDEEP

6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYv:o6RI1Fo/wT3cJYYYYYYYYYYYYv

Score

10^/10

yunsip banker discovery trojan

Malware Config

Targets

- Target
  
  9845331b40f0fd15776b539ba21ba2d0N.exe
- Size
  
  618KB
- MD5
  
  9845331b40f0fd15776b539ba21ba2d0
- SHA1
  
  6bfd01f4ef8e77379a6b45d848958d6fbd932869
- SHA256
  
  d5f870cd290cf38f7bcb2101f27cf42a119c349b86ba0e1afa699d8c63e83191
- SHA512
  
  b95287f341025aef34185b53b3eb3804de255ec490e225b4e664ec846193a97cb7ff0a1023a821ff179f679afedb11cfb0d0d9cdf3e0f775907950ed19d4ba68
- SSDEEP
  
  6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYv:o6RI1Fo/wT3cJYYYYYYYYYYYYv
Score

10^/10

yunsip banker discovery trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

yunsipbankerdiscoverytrojan

behavioral2

yunsipbankerdiscoverytrojan