yunsip | e8e77a06f36f5d73276e0ec3e524ddc0c3aaab6163444b29de5cf6ae159159a9 | Triage

Sharing

General

Target

e8e77a06f36f5d73276e0ec3e524ddc0c3aaab6163444b29de5cf6ae159159a9
Size

503KB
Sample

240925-dq2w1svdkh
MD5

f6d76de5156f141d516c74a20ed26859
SHA1

a5bd0da8fd9ac1afa6ff51c4496eebbf144dfe01
SHA256

e8e77a06f36f5d73276e0ec3e524ddc0c3aaab6163444b29de5cf6ae159159a9
SHA512

8a34ffb272db70e7981e653803a68287c1a854b33248efa4b6590da7c3c0a96d229a7066f70b1b64e5dcc598b02a694658bd3b12b8f03b1b825828432fb926ac
SSDEEP

3072:o6pU5Y1DXnbMn7Uzkop61/dAzV2O3XwTBftrm2YedGf3QKZDp:o6C5AXbMn7UI1FoV2gwTBlrIckPr

Score

10^/10

yunsip banker discovery trojan

Malware Config

Targets

- Target
  
  e8e77a06f36f5d73276e0ec3e524ddc0c3aaab6163444b29de5cf6ae159159a9
- Size
  
  503KB
- MD5
  
  f6d76de5156f141d516c74a20ed26859
- SHA1
  
  a5bd0da8fd9ac1afa6ff51c4496eebbf144dfe01
- SHA256
  
  e8e77a06f36f5d73276e0ec3e524ddc0c3aaab6163444b29de5cf6ae159159a9
- SHA512
  
  8a34ffb272db70e7981e653803a68287c1a854b33248efa4b6590da7c3c0a96d229a7066f70b1b64e5dcc598b02a694658bd3b12b8f03b1b825828432fb926ac
- SSDEEP
  
  3072:o6pU5Y1DXnbMn7Uzkop61/dAzV2O3XwTBftrm2YedGf3QKZDp:o6C5AXbMn7UI1FoV2gwTBlrIckPr
Score

10^/10

yunsip banker discovery trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

yunsipbankerdiscoverytrojan

behavioral2

yunsipbankerdiscoverytrojan