yunsip | 7c7f83aaa6c05db68970559a466ab0c6cae6b01d318a4faea393346da3ae0ce3 | Triage

Sharing

General

Target

7c7f83aaa6c05db68970559a466ab0c6cae6b01d318a4faea393346da3ae0ce3
Size

818KB
Sample

240829-3fd5mswgqh
MD5

22f56aaf8267941c0b8523c9b2ae898b
SHA1

255d3226910d61a5b79e03f0d389c6b20cdff2a4
SHA256

7c7f83aaa6c05db68970559a466ab0c6cae6b01d318a4faea393346da3ae0ce3
SHA512

7cb3056d951341f2f869c1cfe191abbda2c324c39e749035ca3b3eecac0af843a31d29e4f83a82073c80bee0b97bf194276a11538dbd0f83dc70f5f35f36fe1e
SSDEEP

6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYo:o6RI1Fo/wT3cJYYYYYYYYYYYYo

Score

10^/10

yunsip banker discovery trojan

Malware Config

Targets

- Target
  
  7c7f83aaa6c05db68970559a466ab0c6cae6b01d318a4faea393346da3ae0ce3
- Size
  
  818KB
- MD5
  
  22f56aaf8267941c0b8523c9b2ae898b
- SHA1
  
  255d3226910d61a5b79e03f0d389c6b20cdff2a4
- SHA256
  
  7c7f83aaa6c05db68970559a466ab0c6cae6b01d318a4faea393346da3ae0ce3
- SHA512
  
  7cb3056d951341f2f869c1cfe191abbda2c324c39e749035ca3b3eecac0af843a31d29e4f83a82073c80bee0b97bf194276a11538dbd0f83dc70f5f35f36fe1e
- SSDEEP
  
  6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYo:o6RI1Fo/wT3cJYYYYYYYYYYYYo
Score

10^/10

yunsip banker discovery trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

yunsipbankerdiscoverytrojan

behavioral2

yunsipbankerdiscoverytrojan