yunsip | 93e4ddc7e41cd80d89004774f89b5eea2159ef963d1e3632a728fc389ed60457 | Triage

Sharing

General

Target

4d5d57a2ec2f9bacac2135a99887d8f0N.exe
Size

1.0MB
Sample

240824-pkmqpa1gnj
MD5

4d5d57a2ec2f9bacac2135a99887d8f0
SHA1

71cb7b6010e97076332a68a3bdd1b4d3e675f9dd
SHA256

93e4ddc7e41cd80d89004774f89b5eea2159ef963d1e3632a728fc389ed60457
SHA512

809a03a69926c0e56fc73c83551590b1c068b96d41f96b8f1256416bcaf23ebfae94f2a01ebaa98b1454684ac5b69f008269901d8febd8e52818c8d44bf19822
SSDEEP

3072:jDKpt9sSR0HUHPwZWLnWVfEAzV2IJIwTBftpmc+z+f3Q0Q:jDgtfRQUHPw06MoV2nwTBlhm8o

Score

10^/10

yunsip banker discovery trojan

Malware Config

Targets

- Target
  
  4d5d57a2ec2f9bacac2135a99887d8f0N.exe
- Size
  
  1.0MB
- MD5
  
  4d5d57a2ec2f9bacac2135a99887d8f0
- SHA1
  
  71cb7b6010e97076332a68a3bdd1b4d3e675f9dd
- SHA256
  
  93e4ddc7e41cd80d89004774f89b5eea2159ef963d1e3632a728fc389ed60457
- SHA512
  
  809a03a69926c0e56fc73c83551590b1c068b96d41f96b8f1256416bcaf23ebfae94f2a01ebaa98b1454684ac5b69f008269901d8febd8e52818c8d44bf19822
- SSDEEP
  
  3072:jDKpt9sSR0HUHPwZWLnWVfEAzV2IJIwTBftpmc+z+f3Q0Q:jDgtfRQUHPw06MoV2nwTBlhm8o
Score

10^/10

yunsip banker discovery trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

yunsipbankerdiscoverytrojan

behavioral2

yunsipbankerdiscoverytrojan