Overview

overview

10

Static

static

3

9845331b40...0N.dll

windows7-x64

10

9845331b40...0N.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9845331b40f0fd15776b539ba21ba2d0N.exe

  • Size

    618KB

  • Sample

    240731-kxnras1gla

  • MD5

    9845331b40f0fd15776b539ba21ba2d0

  • SHA1

    6bfd01f4ef8e77379a6b45d848958d6fbd932869

  • SHA256

    d5f870cd290cf38f7bcb2101f27cf42a119c349b86ba0e1afa699d8c63e83191

  • SHA512

    b95287f341025aef34185b53b3eb3804de255ec490e225b4e664ec846193a97cb7ff0a1023a821ff179f679afedb11cfb0d0d9cdf3e0f775907950ed19d4ba68

  • SSDEEP

    6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYv:o6RI1Fo/wT3cJYYYYYYYYYYYYv

Score
10/10
yunsipbankerdiscoverytrojan

Malware Config

Targets

    • Target

      9845331b40f0fd15776b539ba21ba2d0N.exe

    • Size

      618KB

    • MD5

      9845331b40f0fd15776b539ba21ba2d0

    • SHA1

      6bfd01f4ef8e77379a6b45d848958d6fbd932869

    • SHA256

      d5f870cd290cf38f7bcb2101f27cf42a119c349b86ba0e1afa699d8c63e83191

    • SHA512

      b95287f341025aef34185b53b3eb3804de255ec490e225b4e664ec846193a97cb7ff0a1023a821ff179f679afedb11cfb0d0d9cdf3e0f775907950ed19d4ba68

    • SSDEEP

      6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYv:o6RI1Fo/wT3cJYYYYYYYYYYYYv

    Score
    10/10
    yunsipbankerdiscoverytrojan

    • Yunsip

      Remote backdoor which communicates with a C2 server to receive commands.

      trojanbankeryunsip
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1
T1614

System Language Discovery

1
T1614.001

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks