yunsip | d0586543f6fc5062d08b2aa687f9cd631d5850a5ffb391a229dc33d0f0c4f1ae | Triage

Sharing

General

Target

d30fde9ac91268e28110869aa5a6a330N
Size

1.0MB
Sample

240913-bvkgeswgqj
MD5

d30fde9ac91268e28110869aa5a6a330
SHA1

51e79259226cbd6310ccc1dfafb69f43f1a398db
SHA256

d0586543f6fc5062d08b2aa687f9cd631d5850a5ffb391a229dc33d0f0c4f1ae
SHA512

747071248bb55511ee7485c671ac3e56b877f10eededb3b629e8528d062ffdae88cadd13ab9e9176c7c9258f6c175911662ba2ab15021d325fc92cad0adb7ebd
SSDEEP

6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYi:o6RI1Fo/wT3cJYYYYYYYYYYYYi

Score

10^/10

yunsip banker discovery trojan

Malware Config

Targets

- Target
  
  d30fde9ac91268e28110869aa5a6a330N
- Size
  
  1.0MB
- MD5
  
  d30fde9ac91268e28110869aa5a6a330
- SHA1
  
  51e79259226cbd6310ccc1dfafb69f43f1a398db
- SHA256
  
  d0586543f6fc5062d08b2aa687f9cd631d5850a5ffb391a229dc33d0f0c4f1ae
- SHA512
  
  747071248bb55511ee7485c671ac3e56b877f10eededb3b629e8528d062ffdae88cadd13ab9e9176c7c9258f6c175911662ba2ab15021d325fc92cad0adb7ebd
- SSDEEP
  
  6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYi:o6RI1Fo/wT3cJYYYYYYYYYYYYi
Score

10^/10

yunsip banker discovery trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

yunsipbankerdiscoverytrojan

behavioral2

yunsipbankerdiscoverytrojan