yunsip | 3ea70944479b54a134a448346ee6aaad5ad0ac211043f91c6887a1c6cf4de253 | Triage

Sharing

General

Target

3ea70944479b54a134a448346ee6aaad5ad0ac211043f91c6887a1c6cf4de253N
Size

193KB
Sample

241003-zkv26szand
MD5

fed78048b82ffb1fea2660581c1bbc60
SHA1

980c0731f2abf08aa2d16fed7591da20447113a9
SHA256

3ea70944479b54a134a448346ee6aaad5ad0ac211043f91c6887a1c6cf4de253
SHA512

59d1d2b847030aa938e3add6e8a21a5fa114edd2c73c3fb14393ab421d02784a0032ab4442236b9e3ed2c2665b970a8392ad1bab3117bed101f6731447d67114
SSDEEP

3072:jDKpt9sSR0HUHPwZWLnWVfEAzV2IJIwTBftpmc+z+f3Q04:jDgtfRQUHPw06MoV2nwTBlhm8Q

Score

10^/10

yunsip banker discovery trojan

Malware Config

Targets

- Target
  
  3ea70944479b54a134a448346ee6aaad5ad0ac211043f91c6887a1c6cf4de253N
- Size
  
  193KB
- MD5
  
  fed78048b82ffb1fea2660581c1bbc60
- SHA1
  
  980c0731f2abf08aa2d16fed7591da20447113a9
- SHA256
  
  3ea70944479b54a134a448346ee6aaad5ad0ac211043f91c6887a1c6cf4de253
- SHA512
  
  59d1d2b847030aa938e3add6e8a21a5fa114edd2c73c3fb14393ab421d02784a0032ab4442236b9e3ed2c2665b970a8392ad1bab3117bed101f6731447d67114
- SSDEEP
  
  3072:jDKpt9sSR0HUHPwZWLnWVfEAzV2IJIwTBftpmc+z+f3Q04:jDgtfRQUHPw06MoV2nwTBlhm8Q
Score

10^/10

yunsip banker discovery trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

yunsipbankerdiscoverytrojan

behavioral2

yunsipbankerdiscoverytrojan