yunsip | 2334c6cad2181bb74450e9eb1a0cfc13563ab97b410d2b84915b53914ebd9c75 | Triage

Sharing

General

Target

d7bf2957ee356ee93beadb438ea814e0N
Size

690KB
Sample

240910-gqc5fa1cnb
MD5

d7bf2957ee356ee93beadb438ea814e0
SHA1

22fc246e8681df08011d90cc047162364adfc0dd
SHA256

2334c6cad2181bb74450e9eb1a0cfc13563ab97b410d2b84915b53914ebd9c75
SHA512

fbda32ef1640bd10dbf8807a39d3dee7f0b4ea677f338dbcd8393a2ea46f367a943a063aa2701c9421a5c1e4d46cb1be20f60130416286ee70df46f4f9bae4ac
SSDEEP

6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYS:o6RI1Fo/wT3cJYYYYYYYYYYYYS

Score

10^/10

yunsip banker discovery trojan

Malware Config

Targets

- Target
  
  d7bf2957ee356ee93beadb438ea814e0N
- Size
  
  690KB
- MD5
  
  d7bf2957ee356ee93beadb438ea814e0
- SHA1
  
  22fc246e8681df08011d90cc047162364adfc0dd
- SHA256
  
  2334c6cad2181bb74450e9eb1a0cfc13563ab97b410d2b84915b53914ebd9c75
- SHA512
  
  fbda32ef1640bd10dbf8807a39d3dee7f0b4ea677f338dbcd8393a2ea46f367a943a063aa2701c9421a5c1e4d46cb1be20f60130416286ee70df46f4f9bae4ac
- SSDEEP
  
  6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYS:o6RI1Fo/wT3cJYYYYYYYYYYYYS
Score

10^/10

yunsip banker discovery trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

yunsipbankerdiscoverytrojan

behavioral2

yunsipbankerdiscoverytrojan