Overview

overview

10

Static

static

3

e022ed1535...5a.dll

windows7-x64

10

e022ed1535...5a.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e022ed15357fc4f55e33ead08a5ffcb384b65d0f9e4a08ad0f0d51131931615a

  • Size

    1.0MB

  • Sample

    240809-ds6b8azbmc

  • MD5

    8e945420f1eeacafdce88036a2577867

  • SHA1

    aa0202476e58c2de8e7fe2b177562c26f4e5dbcf

  • SHA256

    e022ed15357fc4f55e33ead08a5ffcb384b65d0f9e4a08ad0f0d51131931615a

  • SHA512

    bd50738f58569e9daf7b4391c46572c63c08ee945e49f1b861a701e3731aa2a3f8a1df938e4b3d7bafd7896a45c8a494060465adaf1086e3514ac87c7cf8ec29

  • SSDEEP

    6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYY3:o6RI1Fo/wT3cJYYYYYYYYYYYY3

Score
10/10
yunsipbankerdiscoverytrojan

Malware Config

Targets

    • Target

      e022ed15357fc4f55e33ead08a5ffcb384b65d0f9e4a08ad0f0d51131931615a

    • Size

      1.0MB

    • MD5

      8e945420f1eeacafdce88036a2577867

    • SHA1

      aa0202476e58c2de8e7fe2b177562c26f4e5dbcf

    • SHA256

      e022ed15357fc4f55e33ead08a5ffcb384b65d0f9e4a08ad0f0d51131931615a

    • SHA512

      bd50738f58569e9daf7b4391c46572c63c08ee945e49f1b861a701e3731aa2a3f8a1df938e4b3d7bafd7896a45c8a494060465adaf1086e3514ac87c7cf8ec29

    • SSDEEP

      6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYY3:o6RI1Fo/wT3cJYYYYYYYYYYYY3

    Score
    10/10
    yunsipbankerdiscoverytrojan

    • Yunsip

      Remote backdoor which communicates with a C2 server to receive commands.

      trojanbankeryunsip
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1
T1614

System Language Discovery

1
T1614.001

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks