yunsip | ede55c0b0f0452679ec6d8ffea8df8c10f96ec93ff178117250873103c5b51cc | Triage

Sharing

General

Target

ede55c0b0f0452679ec6d8ffea8df8c10f96ec93ff178117250873103c5b51ccN
Size

1.1MB
Sample

241014-3xcyxawgnr
MD5

cbe1c071da936146e433edcb4b371ef0
SHA1

b3ba835e2629a41725ecb58f59d0b61d3a2b3a8c
SHA256

ede55c0b0f0452679ec6d8ffea8df8c10f96ec93ff178117250873103c5b51cc
SHA512

d1978408aae72c35d2f9b13ff6c366b5fdd0d9af4cf5b64cd775590b74afb122e5234c1e7fe77a533391cc005f1bd8c4408e75ddc22b07c222e05b20012524d9
SSDEEP

3072:jDKpt9sSR0HUHPwZWLnWVfEAzV2IJIwTBftpmc+z+f3Q03:jDgtfRQUHPw06MoV2nwTBlhm8f

Score

10^/10

yunsip banker discovery trojan

Malware Config

Targets

- Target
  
  ede55c0b0f0452679ec6d8ffea8df8c10f96ec93ff178117250873103c5b51ccN
- Size
  
  1.1MB
- MD5
  
  cbe1c071da936146e433edcb4b371ef0
- SHA1
  
  b3ba835e2629a41725ecb58f59d0b61d3a2b3a8c
- SHA256
  
  ede55c0b0f0452679ec6d8ffea8df8c10f96ec93ff178117250873103c5b51cc
- SHA512
  
  d1978408aae72c35d2f9b13ff6c366b5fdd0d9af4cf5b64cd775590b74afb122e5234c1e7fe77a533391cc005f1bd8c4408e75ddc22b07c222e05b20012524d9
- SSDEEP
  
  3072:jDKpt9sSR0HUHPwZWLnWVfEAzV2IJIwTBftpmc+z+f3Q03:jDgtfRQUHPw06MoV2nwTBlhm8f
Score

10^/10

yunsip banker discovery trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

yunsipbankerdiscoverytrojan

behavioral2

yunsipbankerdiscoverytrojan