Overview

overview

10

Static

static

3

1d23b63d36...0N.dll

windows7-x64

10

1d23b63d36...0N.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1d23b63d3665d7c8321d1ab9941e7960N

  • Size

    527KB

  • Sample

    240908-mt5lrathjg

  • MD5

    1d23b63d3665d7c8321d1ab9941e7960

  • SHA1

    2bba819e4b7ea50977cf7ff8da2312f8b545943c

  • SHA256

    4d07797a3abfcf52d8f89723d9b6b53739274bfc95133f7738214bbfa0a60dac

  • SHA512

    a297049bdfb3a611317b700b4aac13a54335c01d7c50b277d3562cf305a63ba164725d0df45073585b98bd0b789fa811a0baac9198a4078537ee76c56ce3b710

  • SSDEEP

    3072:jDKpt9sSR0HUHPwZWLnWVfEAzV2IJIwTBftpmc+z+f3Q0F:jDgtfRQUHPw06MoV2nwTBlhm8d

Score
10/10
yunsipbankerdiscoverytrojan

Malware Config

Targets

    • Target

      1d23b63d3665d7c8321d1ab9941e7960N

    • Size

      527KB

    • MD5

      1d23b63d3665d7c8321d1ab9941e7960

    • SHA1

      2bba819e4b7ea50977cf7ff8da2312f8b545943c

    • SHA256

      4d07797a3abfcf52d8f89723d9b6b53739274bfc95133f7738214bbfa0a60dac

    • SHA512

      a297049bdfb3a611317b700b4aac13a54335c01d7c50b277d3562cf305a63ba164725d0df45073585b98bd0b789fa811a0baac9198a4078537ee76c56ce3b710

    • SSDEEP

      3072:jDKpt9sSR0HUHPwZWLnWVfEAzV2IJIwTBftpmc+z+f3Q0F:jDgtfRQUHPw06MoV2nwTBlhm8d

    Score
    10/10
    yunsipbankerdiscoverytrojan

    • Yunsip

      Remote backdoor which communicates with a C2 server to receive commands.

      trojanbankeryunsip
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1
T1614

System Language Discovery

1
T1614.001

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks