yunsip | 55ed312b56c058500631b2f2085f2dab452c214027b6c5c9c75882aee3b55e43 | Triage

Sharing

General

Target

55ed312b56c058500631b2f2085f2dab452c214027b6c5c9c75882aee3b55e43N
Size

802KB
Sample

241005-vwtk9sxfjn
MD5

e434bea9016da73343c34f6fe52a7430
SHA1

5c9994e7a0e4ae075b98f3dad1949107612fe26a
SHA256

55ed312b56c058500631b2f2085f2dab452c214027b6c5c9c75882aee3b55e43
SHA512

af445f24d7d0bb3b4bb1eda5b016fb9a34fd3f356d1295d53a668d7fc2d4c8a39bb2f275aef7df7431536dd924ab388e846ec11bfb17fdc5c20c3b197c911743
SSDEEP

6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYV:o6RI1Fo/wT3cJYYYYYYYYYYYYV

Score

10^/10

yunsip banker discovery trojan

Malware Config

Targets

- Target
  
  55ed312b56c058500631b2f2085f2dab452c214027b6c5c9c75882aee3b55e43N
- Size
  
  802KB
- MD5
  
  e434bea9016da73343c34f6fe52a7430
- SHA1
  
  5c9994e7a0e4ae075b98f3dad1949107612fe26a
- SHA256
  
  55ed312b56c058500631b2f2085f2dab452c214027b6c5c9c75882aee3b55e43
- SHA512
  
  af445f24d7d0bb3b4bb1eda5b016fb9a34fd3f356d1295d53a668d7fc2d4c8a39bb2f275aef7df7431536dd924ab388e846ec11bfb17fdc5c20c3b197c911743
- SSDEEP
  
  6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYV:o6RI1Fo/wT3cJYYYYYYYYYYYYV
Score

10^/10

yunsip banker discovery trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

yunsipbankerdiscoverytrojan

behavioral2

yunsipbankerdiscoverytrojan